HI I am new to squid and I am having a few problems setting up Active
Directory authentication
I have squid running on a windows xp computer in a windows server 2003
domain
I would like to have all internet access to proxy through this computer and
then log
The user that was logged on
The computer that they were on
And the website they go to
And the time
The domain name is: school.internal.net
When I run squid and open a webpage it’s asked for a username and password
when I do that squid stops and says Squid Cache (Version 2.7.STABLE2):
Terminated abnormally.
Here is the config file I have
I would be very thankful for any help.
Squid.conf
# Squid port is 3128; change it if you like
http_port 3128
# disable icp
icp_port 0
# some acls
acl QUERY urlpath_regex cgi-bin \?
no_cache deny QUERY
#Squid LDAP Authentication
auth_param basic program /squid/libexec/squid_ldap_auth.exe -R
-b "dc=school,dc=internal,dc=net"
-D "cn=administrator,cn=Users,dc=school,dc=internal,dc=net"
-w "the password" -f sAMAccountName=%s -h 10.35.123.4
auth_param basic children 5
auth_param basic realm davenant.internal.net
auth_param basic credentialsttl 6 minutes
acl localnet proxy_auth REQUIRED src 10.35.123.0/22
#acl localnet src 10.35.123.0/22
acl localhost src 127.0.0.1/255.255.255.255
http_access allow localnet
http_access allow localhost
# Recommended minimum configuration:
acl all src 0.0.0.0/0.0.0.0
acl localhost src 127.0.0.1/255.255.255.255
#acl localnet src 10.35.123.0/22
acl SSL_ports port 443 563
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 563 # https, snews
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 631 # cups
acl Safe_ports port 777 # multiling http
acl Safe_ports port 3128 # SWAT
Safe_ports port 901 # squid
acl purge method PURGE
#acl CONNECT method CONNECT
#acl FTP proto FTP
# Only allow cachemgr access from localhost
#http_access allow all manager localhost
# Only allow purge requests from localhost
http_access allow purge
# localhost
http_access deny purge
# Deny requests to unknown ports
http_access deny !Safe_ports
# Deny CONNECT to other than SSL ports
#http_access deny CONNECT !SSL_ports
# my own rules
http_access allow all localhost localnet
# And finally deny all other access to this proxy
#http_access deny all
http://www.nabble.com/file/p23193817/cache.log cache.log
http://www.nabble.com/file/p23193817/squid.conf squid.conf
-- View this message in context: http://www.nabble.com/Squid-with-Active-Directory-Authentication-tp23193817p23193817.html Sent from the Squid - Users mailing list archive at Nabble.com.Received on Thu Apr 23 2009 - 09:54:18 MDT
This archive was generated by hypermail 2.2.0 : Thu Apr 23 2009 - 12:00:01 MDT