Rocky_Linux_8
Sponsored Link

Squid : Set Basic Authentication2021/08/05

 
Set Basic Authentication and limit to use Squid for users to require authentication.
[1] Install a package which includes htpasswd.
[root@prox ~]#
dnf -y install httpd-tools
[2] Configure Squid to set Basic Authentication.
[root@prox ~]#
vi /etc/squid/squid.conf
acl CONNECT method CONNECT
# line 29 : add follows for Basic Authentication

auth_param basic program /usr/lib64/squid/basic_ncsa_auth /etc/squid/.htpasswd
auth_param basic children 5
auth_param basic realm Squid Basic Authentication
auth_param basic credentialsttl 5 hours
acl password proxy_auth REQUIRED
http_access allow password
[root@prox ~]#
systemctl restart squid

# add a user : create new file with [-c] option

[root@prox ~]#
htpasswd -c /etc/squid/.htpasswd rocky

New password:    
# set password

Re-type new password:
Adding password for user rocky
Proxy Client : Rocky Linux
[3] Configure Rocky Linux Proxy Client for Basic Authentication.
[root@client ~]#
vi /etc/profile.d/proxy.sh
# create new

# username:password@proxyserver:port

MY_PROXY_URL="rocky:password@prox.srv.world:3128"

HTTP_PROXY=$MY_PROXY_URL
HTTPS_PROXY=$MY_PROXY_URL
FTP_PROXY=$MY_PROXY_URL
http_proxy=$MY_PROXY_URL
https_proxy=$MY_PROXY_URL
ftp_proxy=$MY_PROXY_URL

export HTTP_PROXY HTTPS_PROXY FTP_PROXY http_proxy https_proxy ftp_proxy

[root@client ~]#
source /etc/profile.d/proxy.sh
# or it's possible to set proxy settings for each application, not System wide

# for [dnf]

[root@client ~]#
vi /etc/dnf/dnf.conf
# add to the end

proxy=prox.srv.world:3128
proxy_username=rocky
proxy_password=password
# for [curl]

[root@client ~]#
vi ~/.curlrc
# create new

proxy=prox.srv.world:3128
proxy-user=rocky:password
# for [wget]

[root@client ~]#
vi /etc/wgetrc
# add to the end

http_proxy = prox.srv.world:3128
https_proxy = prox.srv.world:3128
ftp_proxy = prox.srv.world:3128
proxy_user = rocky
proxy_passwd = password
Proxy Client : Windows
[4] For Windows Clients, none of specific settings, but when access to a web, proxy server requires authentication like follows, then input username and password.
Matched Content