Differences between revisions 7 and 8

Squid web proxy

My goal is to keep notes on how to enable Windows AD authentication on Squid3.x
http://www.papercut.com/kb/Main/ConfiguringSquidProxyToAuthenticateWithActiveDirectory

I joined the domain using "net rpc join -S PDC -U Administrator" # wbinfo -t > checking the trust secret via RPC calls succeeded > # wbinfo -u # wbinfo -g

http://www.cyberciti.biz/faq/squid-ntlm-authentication-configuration-howto/

Not tested

#auth_param negotiate program /usr/local/squid/bin/ntlm_auth --helper-protocol=gs
s-spnego

domain=> [domain] auth_param ntlm program /usr/lib/squid3/ntlm_auth -d domain/serv1 domain/serv2

acl Ip_Block_Range url_regex [0-9]*\.[0-9]*\.[0-9]*\.[0-9]*\:443
http_access deny Ip_Block_Range

Since FTP uses numeric IPs the Skype ACL must be exact including the port.

# Skype
acl numeric_IPs url_regex ^[0-9]+\.[0-9]+\.[0-9]+\.[0-9]+:443
acl Skype_UA browser ^skype^
http_access deny numeric_IPS
http_access deny Skype_UA

...

CategoryLinux

-  ⇤ ← Revision 7 as of 2009-05-25 12:10:46 → 
  Size: 1056
  Editor: PieterSmit
  Comment:
+   ← Revision 8 as of 2009-07-13 09:00:18 → ⇥
  Size: 1145
  Editor: PieterSmit
  Comment:
-Deletions are marked like this.
+Additions are marked like this.
 Line 7:
+ * http://www.papercut.com/kb/Main/ConfiguringSquidProxyToAuthenticateWithActiveDirectory