Let me first describe the network setup:
1. Firewall(IPTables)/proxy(Squid)/content filter(Dansguardian) server running Fedora Core 1.
2. OS X.3 Server on G5, running open directory to store users accounts (with password server).
I want to be able to use the squid_ldap_auth module included with the squid package (default fedorea core 1 install) to authenticate proxy users using the information from the OS X.3 server.
I have managed to use ldapsearch to get information from the OS X.3 server using the following command:
ldapsearch -x -d dc=my,dc=domain,dc=name -h osxserver.my.domain.name uid=username
This command connects to the OS X server and returns information regarding the user whos username matches the "username" variable.
II then try to run squid_ldap_auth in command line mode to test the connection using the following command:
squid_ldap_auth -b cn=users,dc=my,dc=domain,dc=name osxserver.my.domain.name
Regardless of the username and password combination, I cannot get the authentication to work - I always get ERR instead of OK.
Just to check my parameters, I setup and openldap server on the fedora box and tested squid_ldap_auth - it worked fine.
Is this an issue with password server?? It would be extremely helpful if I could implement this feature.