Solved

Squid Authentication

Posted on 2016-10-24
7
32 Views
Last Modified: 2016-10-25
Can someone provide a sample SQUID config file for WINDOWS that allows LOCAL WINDOWS USERS to access Squid if they are authenticated?
0
Comment
Question by:albatros99
  • 3
  • 3
7 Comments
 
LVL 61

Expert Comment

by:gheist
ID: 41856880
0
 
LVL 26

Expert Comment

by:skullnobrains
ID: 41857024
i'm assuming you expect domain users to be able to use squid while being automagically authenticated on the squid without retyping their passords

http://wiki.squid-cache.org/ConfigExamples/Authenticate/WindowsActiveDirectory

the above lets you integrate squid with your ad and use kerberos SSO. it only will work with internet explorer though.

--

if you post some more details, there might be a simpler solution. don't you have a dedicated safe network range in which you can assume all users are authenticated one way or another ?
0
 
LVL 3

Author Comment

by:albatros99
ID: 41857051
I'm not planning to use Active Directory. This is a single system and I want to create a couple of local accounts only. Single sign-on is not required. Basically, users should be prompted for name / password and these credentials should be checked against a local username database. I'm thinking they could be local Windows users but I'm just as fine using some proprietary local user database. Squid runds on Windows. If someone has already done this, can they please post the sample squid.conf file.
0
How your wiki can always stay up-to-date

Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
- Increase transparency
- Onboard new hires faster
- Access from mobile/offline

 
LVL 26

Expert Comment

by:skullnobrains
ID: 41857069
i do not think squid can natively use windows auth but you can use an auth plugin that will logon locally. other than that squid can use a crazy number of backends including sql, ldap htpassword files...

than i don't see the point, or there is something i'm not understanding properly. if the squid is installed locally and listens on the loopback ip, this should be good enough.

what are you actually trying to achieve ?
if you expect to deny internet access to some users, there are much more efficient solutions and this one will be a breeze to bypass for any reasonably competent user.
0
 
LVL 3

Author Comment

by:albatros99
ID: 41857079
I think the easiest one I looked at was htpassword. It's a central proxy for a very limited number of users. The proxy has a public IP and clients can be on any network. I want to limit the use of the proxy using auth. because I cannot use IP in this case. If someone has a finalized config for htpassword, can you kindly post it.
0
 
LVL 26

Accepted Solution

by:
skullnobrains earned 500 total points
ID: 41857124
0
 
LVL 3

Author Closing Comment

by:albatros99
ID: 41858338
Worked after some trial and error with NCSA config
0

Featured Post

What Is Threat Intelligence?

Threat intelligence is often discussed, but rarely understood. Starting with a precise definition, along with clear business goals, is essential.

Join & Write a Comment

Suggested Solutions

Title # Comments Views Activity
VMWare 6 crashing 14 56
People Counting Software 2 61
FTP output from Wireshak 6 49
Codiing Non-Existent Links 4 24
This is the error message I got (CODE) Error caused by incompatible libmp3lame 3.98-2 with ffmpeg I've googled this error message and found out sometimes it attaches this note "can be treated with downgrade libmp3lame to version 3.97 or 3.98" …
I am a long time windows user and for me it is normal to have spaces in directory and file names. Changing to Linux I found myself frustrated when I moved my windows data over to my new Linux computer. The problem occurs when at the command line.…
Learn several ways to interact with files and get file information from the bash shell. ls lists the contents of a directory: Using the -a flag displays hidden files: Using the -l flag formats the output in a long list: The file command gives us mor…
Connecting to an Amazon Linux EC2 Instance from Windows Using PuTTY.

706 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

22 Experts available now in Live!

Get 1:1 Help Now