Re: [squid-users] Eliminate PopUP authentication for web Windows Users

From: Delton <delton_at_bnpapel.com.br>
Date: Fri, 22 Mar 2013 07:50:27 -0300

You can see an example of authentication using Kerberos here
http://www.howtoforge.com/debian-squeeze-squid-kerberos-ldap-authentication-active-directory-integration-and-cyfin-reporter
or here http://wiki.squid-cache.org/ConfigExamples/Authenticate/Kerberos

Em 21/03/2013 19:18, Leonardo Rodrigues escreveu:
>
> basic authentication type will always prompt for
> username/password, there's nothing wrong with it and no way to avoid
> it nor 'fix' it as there's nothing wrong at all
>
> if your users are authenticated in your domain and you want squid
> do 'automagically' use those credentials for web surfing, then you'll
> have to change your authentication type to ntlm or digest or negotiate.
>
> i have LOTS of squid boxes authenticanting on ADs using ntlm
> authentication type. It's a lot more complicated to configure than
> basic type but, once configured, it works just fine and simply.
>
>
> Em 21/03/13 18:45, Carlos Daniel Perez escreveu:
>> Hi,
>>
>> I have a Squid server configured to make querys in one ActiveDirectory
>> server trough squid_ldap_group. The query it's OK and authenticated
>> users
>> can surf the web. But, my users need to put their users and password
>> when
>> open a browser.
>>
>> [ ... ]
>> My squid_ldap_auth line is: auth_param basic program
>> /usr/lib/squid3/squid_ldap_auth -R -d -b dc=enterprise,dc=com -D
>> cn=support,cn=Users,dc=enterprise,dc=com -w 12345 -f sAMAccountName=%s
>> -h
>> 192.168.2.1
>>
>>
>
Received on Fri Mar 22 2013 - 10:50:31 MDT

This archive was generated by hypermail 2.2.0 : Fri Mar 22 2013 - 12:00:05 MDT