Como autenticar squid no Active Directory 2008 [RESOLVIDO]

jpgnp
(usa Outra)

Enviado em 15/08/2014 - 16:13h

Prezados,

Estou tentando fazer o squid autenticar no AD, mas não consigo.
Para tentar encontrar o problema verifiquei os logs e iniciei o squid
no modo debug e aparecem os seguintes erros:

squid_ldap_auth: WARNING, could not bind to binddn 'Invalid credentials'

2014/08/14 16:41:41| Open FD UNSTARTED 8 DNS Socket IPv4
2014/08/14 16:41:41| Open FD READ/WRITE 9 squid_ldap_auth #1
2014/08/14 16:41:41| Open FD UNSTARTED 11 squid_ldap_auth #2
2014/08/14 16:41:41| Open FD READ/WRITE 12 Waiting for next request
2014/08/14 16:41:41| Open FD UNSTARTED 13 squid_ldap_auth #3
2014/08/14 16:41:41| Open FD UNSTARTED 15 squid_ldap_auth #4
2014/08/14 16:41:41| Open FD UNSTARTED 17 squid_ldap_auth #5
2014/08/14 16:41:41| Open FD UNSTARTED 20 squid_ldap_group #1
2014/08/14 16:41:41| Open FD UNSTARTED 22 squid_ldap_group #2
2014/08/14 16:41:41| Open FD UNSTARTED 24 squid_ldap_group #3
2014/08/14 16:41:41| Open FD UNSTARTED 26 squid_ldap_group #4
2014/08/14 16:41:41| Open FD UNSTARTED 28 squid_ldap_group #5

2014/08/15 14:25:46.434| store.cc(403) destroyStoreEntry: destroyStoreEntry: destroying 0xb7abac3c
2014/08/15 14:25:46.434| store.cc(393) destroyMemObject: destroyMemObject 0xb7abac80
2014/08/15 14:25:46.435| StoreEntry::setMemStatus: special entry http://ubuntu001:3128/squid-internal-static/icons/anthony-script.gif
2014/08/15 14:25:46.435| MemObject.cc(97) ~MemObject: del MemObject 0xb7abac80
2014/08/15 14:25:46.435| ctx: enter level 0: 'http://ubuntu001:3128/squid-internal-static/icons/anthony-script.gif'
2014/08/15 14:25:46.435| cleaning hdr: 0xb7abadbc owner: 3
2014/08/15 14:25:46.435| cleaning hdr: 0xb7abadbc owner: 3
2014/08/15 14:25:46.435| ctx: exit level 0
2014/08/15 14:25:46.435| ACL::~ACL: '
2014/08/15 14:25:46.436| ACL::~ACL: '
2014/08/15 14:25:46.437| ACL::~ACL: '
2014/08/15 14:25:46.437| ACL::~ACL: '

Já verifiquei foruns com pessoas que tiveram problemas iguais ou semelhantes, mas nenhum dos resultados apresentados resolveram meu problema.

Essa é a configuração que usei para tentar autenticar o squid no ad:

auth_param basic program /usr/lib/squid3/squid_ldap_auth -R -b "DC=novus,DC=net" -D "cn=squid,ou=squid,dc=novus,dc=net"
-w "Samanta02" -f "(sAMAccountName=%f)",searchbase dc=biztalking,dc=net -h 10.8.6.9
auth_param basic realm Arruma isso logo
auth_param basic children 5
auth_param basic casesensitive off
external_acl_type ldap_group %LOGIN /usr/lib/squid3/squid_ldap_group -R -b "ou=squid,dc=novus,dc=net" -D "cn=squid,ou=squid,dc=novus,dc=net"
-w "Samanta02" -f "(&(objectclass=person)(sAMAccountName=%f)(memberof=ou=%v,ou=squid,dc=novus,dc=net)) -h 10.8.6.9

jpgnp
(usa Outra)

Enviado em 18/08/2014 - 21:16h

Consegui resolver o problema