Fedora 34
Sponsored Link

Squid : Set Basic Authentication2021/05/21

 
Set Basic Authentication and limit to use Squid for users to require authentication.
[1] Install a package which includes htpasswd.
[root@prox ~]#
dnf -y install httpd-tools
[2] Configure Squid to set Basic Authentication.
[root@prox ~]#
vi /etc/squid/squid.conf
acl Safe_ports port 777 # multiling http
# line 28 : add follows for Basic Authentication

auth_param basic program /usr/lib64/squid/basic_ncsa_auth /etc/squid/.htpasswd
auth_param basic children 5
auth_param basic realm Squid Basic Authentication
auth_param basic credentialsttl 5 hours
acl password proxy_auth REQUIRED
http_access allow password
[root@prox ~]#
systemctl restart squid

# add a user : create new file with [-c] option

[root@prox ~]#
htpasswd -c /etc/squid/.htpasswd fedora

New password:    
# set password

Re-type new password:
Adding password for user fedora
Proxy Client : Fedora
[3] Configure Fedora Proxy Client for Basic Authentication.
[root@client ~]#
vi /etc/profile.d/proxy.sh
# create new

# username:password@proxyserver:port

MY_PROXY_URL="fedora:password@prox.srv.world:3128"

HTTP_PROXY=$MY_PROXY_URL
HTTPS_PROXY=$MY_PROXY_URL
FTP_PROXY=$MY_PROXY_URL
http_proxy=$MY_PROXY_URL
https_proxy=$MY_PROXY_URL
ftp_proxy=$MY_PROXY_URL

export HTTP_PROXY HTTPS_PROXY FTP_PROXY http_proxy https_proxy ftp_proxy

[root@client ~]#
source /etc/profile.d/proxy.sh
# or it's possible to set proxy settings for each application, not System wide

# for dnf

[root@client ~]#
vi /etc/dnf/dnf.conf
# add to the end

proxy=prox.srv.world:3128
proxy_username=fedora
proxy_password=password
# for curl

[root@client ~]#
vi ~/.curlrc
# create new

proxy=prox.srv.world:3128
proxy-user=fedora:password
# for wget

[root@client ~]#
vi /etc/wgetrc
# add to the end

http_proxy = prox.srv.world:3128
https_proxy = prox.srv.world:3128
ftp_proxy = prox.srv.world:3128
proxy_user = fedora
proxy_passwd = password
Proxy Client : Windows
[4] For Windows Clients, none of specific settings, but when access to a web, proxy server requires authentication like follows, then input username and password.
Matched Content