+ Post New Thread
Results 1 to 7 of 7
Wireless Networks Thread, CachePilot & LDAP/AD in Technical; Hi Everybody! Has anyone got a CachePilot to authenticate against an LDAP/Active Directory server? I've followed Equiinet's instructions but it ...
  1. #1

    Join Date
    Jan 2006
    Location
    Teesside
    Posts
    79
    Thank Post
    2
    Thanked 2 Times in 2 Posts
    Rep Power
    19

    CachePilot & LDAP/AD

    Hi Everybody!

    Has anyone got a CachePilot to authenticate against an LDAP/Active Directory server?

    I've followed Equiinet's instructions but it doesn't want to work
    (http://www.cachepilot.com/eq-resourc...via%20LDAP.pdf)

    Geoff

  2. #2

    Join Date
    Jun 2005
    Location
    London, UK
    Posts
    115
    Thank Post
    0
    Thanked 3 Times in 3 Posts
    Rep Power
    21

    Re: CachePilot & LDAP/AD

    Yes. Try making the cachepilot LDAP user account a member of 'Domain Admins'. If that doesn't work straight away, try these instructions:

    1.Create a group in AD called 'cache'.

    2. Create a user in AD called 'cacheadmin' in the 'Users' container. This account needs to be a member of 'Domain Admins' and the 'Cache' group created earlier.

    3.On the cachepilot LDAP configuration page, configure the settings as follows:
    LDAP Server: IP address of DC.
    User Directory: Base DN of AD Domain (e.g. DC=reephamhigh,DC=local)

    User: cacheadmin, CN=Users
    Password: password for cacheadmin

    4.On the cachepilot 'User' page, add a user called 'cache' (the same as the AD group created earlier) and make the user a member of the cachepilot 'controlled' group.

    5.On the cachepilot 'Web Access' page, change the radio button to 'Users'.

    6.In Active Directory, user accounts need to be added to the 'cache' group to be able to authenticate and access the internet.

    Issues:
    UPN suffixes are not supported.
    Users that have been renamed in the past cannot authenticate.
    Users with spaces or other non-alphanumeric characters in their passwords cannot authenticate.

  3. #3
    DMcCoy's Avatar
    Join Date
    Oct 2005
    Location
    Isle of Wight
    Posts
    3,505
    Thank Post
    10
    Thanked 508 Times in 445 Posts
    Rep Power
    116

    Re: CachePilot & LDAP/AD

    A normal user has enough rights to authenticate over ldap. The user I bind to ldap with is only a member of domain users, nothing more.

    Does the system really need domain admin access? (Not that I use, or am likely to use it, just curious)

  4. #4

    Join Date
    Jun 2005
    Location
    London, UK
    Posts
    115
    Thank Post
    0
    Thanked 3 Times in 3 Posts
    Rep Power
    21

    Re: CachePilot & LDAP/AD

    When I originally tried to set this up with a basic 'Domain User' account, it worked, but rather inconsistently. For example, users could be added to the 'cache' group, but wouldn't be able to authenticate for another 24-48 hours.

    Adding the 'cacheadmin' account to the 'Domain Admins' group seems to solve all the quirky problems, although it's not the solution I would like.

  5. #5
    SteveD's Avatar
    Join Date
    Jun 2006
    Location
    North West
    Posts
    17
    Thank Post
    0
    Thanked 1 Time in 1 Post
    Rep Power
    0

    Re: CachePilot & LDAP/AD

    Make sure the account you're using to bind LDAP is in the Base DN that you specify for the user directory. I've set a few of these up now & that always seems to be the problem people have.

    I'm not bothering setting any more up though!

    Filtering a waste of time now kids know they can just stick a . on the end of the TLD and get straight past the filter.e.g. http://www.porn.com./

  6. #6

    Join Date
    Jan 2006
    Location
    Teesside
    Posts
    79
    Thank Post
    2
    Thanked 2 Times in 2 Posts
    Rep Power
    19

    Re: CachePilot & LDAP/AD

    My CachePilot blocks TLDs with a . on the end (N2H2 query: Matches Blacklist. BLOCK)

  7. #7

    Join Date
    Jan 2006
    Location
    Teesside
    Posts
    79
    Thank Post
    2
    Thanked 2 Times in 2 Posts
    Rep Power
    19

    Re: CachePilot & LDAP/AD

    And LDAP still isn't working... It just brings up a logon on box that refuses everything :-(



SHARE:
+ Post New Thread

Similar Threads

  1. Something better than cachepilot filtering.. (and free)
    By dgsmith in forum How do you do....it?
    Replies: 16
    Last Post: 3rd January 2008, 11:05 AM
  2. Cachepilot Problems
    By tomscaper in forum Windows
    Replies: 4
    Last Post: 7th November 2007, 10:30 PM
  3. Cachepilot and MS Clipart???
    By starscream in forum Wireless Networks
    Replies: 5
    Last Post: 10th July 2007, 10:07 AM
  4. cachepilot/proxy server
    By ptrainor1 in forum Windows
    Replies: 12
    Last Post: 10th February 2006, 09:15 AM
  5. VPN over Cachepilot
    By Boris in forum Wireless Networks
    Replies: 5
    Last Post: 3rd October 2005, 10:17 AM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •