Thanks Ilker and Simon! I've got my authentication working!
But another question though. How do I authenticate my users using Netscape
Directory Services LDAP authentication to Squid? I mean the idea is I want the
authentication of Squid to be the same or to be based on users (and their
passwds) as listed on our LDAP Server (a mail server) running Netscape
Messenger. Is this possible?
Joel
Simon Bryan wrote:
> OK,
> You need to find this section in your Squid Conf file and add the last line,
> using your own path of course:
>
> ++++++++++++++++++++++++++++++++++++++++++++++++++++++
>
> # TAG: authenticate_program
> # Specify the command for the external authenticator. Such a
> # program reads a line containing "username password" and replies
> # "OK" or "ERR" in an endless loop. If you use an authenticator,
> # make sure you have 1 acl of type proxy_auth. By default, the
> # authenticator_program is not used.
> #
> # If you want to use the traditional proxy authentication,
> # jump over to the ../auth_modules/NCSA directory and
> # type:
> # % make
> # % make install
> #
> # Then, set this line to something like
> #
> # authenticate_program /usr/bin/ncsa_auth /usr/etc/passwd
> #
> #authenticate_program none
> authenticate_program /usr/sbin/ncsa_auth /etc/squid/etc/proxypwd
>
> +++++++++++++++++++++++++++++++++++++++++++++++++++++
>
> The password file (in my case 'proxypwd') was created by the Apache
> password program, you can get it the same place you got the NCSA
> module. Or if you already have Apache running you can use that one. The
> syntax is something like:
>
> path_to_password_prof/htpasswd path_to_password_file/passwordfile
> username
>
> try --help,to get the rigt one, you can also input a text file
>
> HTH
>
> > Simon,
> >
> > I have read your experience re setting up proxy authentication. Actually
> > I'm new to squid myself and my boss would like some sort of authentication
> > before our users could access the net.
> >
> > I am already done with the 'make' part of the ncsa_auth module on the NCSA
> > directory. However, I don't know how to proceed from there. I mean
> > where do I proceed adding users who are allowed to access the net with
> > authentication.
> >
> > Please help.
> >
> > Thanks
> >
> > Joel
> >
> > Simon Bryan wrote:
> >
> > > Thanks a lot Duane(and all the others), the final crucial missing link
> > > was the make in the lib directory. I now have my module, that was the
> > > easy bit now on to the hard part!!!
> > >
> > > >
> > > >
> > > > On Thu, 24 Feb 2000, Simon Bryan wrote:
> > > >
> > > > > OK, sorry to be a nuisance but these are my latest attempts at this,
> > > > > the squid5 directory is the root directory of the extracted files
> > > > > and have tried giving the configure as a complete path from the root
> > > > > directory.
> > > >
> > > > Simon,
> > > >
> > > > Here are the commands that you type:
> > > >
> > > > cd /tmp
> > > > ftp ftp.squid-cache.org
> > > > ftp
> > > > guest@
> > > > passive
> > > > cd pub/squid-2/STABLE
> > > > bin
> > > > get squid-2.3.STABLE1-src.tar.gz
> > > > bye
> > > > tar xzf squid-2.3.STABLE1-src.tar.gz
> > > > cd squid-2.3.STABLE1
> > > > ./configure
> > > > cd lib
> > > > make
> > > > cd ../auth_modules/NCSA/
> > > > make
> > > > ls -trl
> > > >
> > > > Duane W.
> > >
> > > --
> > > Simon Bryan sbryan@olmc.nsw.edu.au
> > > Information Technology Manager sbryan@mpx.com.au
> > > OLMC Parramatta
>
> --
> Simon Bryan sbryan@olmc.nsw.edu.au
> Information Technology Manager sbryan@mpx.com.au
> OLMC Parramatta
Received on Tue Apr 11 2000 - 08:42:15 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:52:54 MST