Squid : Set Basic Authentication2021/08/05 |
|
Set Basic Authentication and limit to use Squid for users to require authentication.
|
|
| [1] | Install a package which includes htpasswd. |
|
[root@prox ~]# dnf -y install httpd-tools
|
| [2] | Configure Squid to set Basic Authentication. |
|
[root@prox ~]#
vi /etc/squid/squid.conf
acl CONNECT method CONNECT
# line 29 : add follows for Basic Authentication
auth_param basic program /usr/lib64/squid/basic_ncsa_auth /etc/squid/.htpasswd
auth_param basic children 5 auth_param basic realm Squid Basic Authentication auth_param basic credentialsttl 5 hours acl password proxy_auth REQUIRED http_access allow password
[root@prox ~]#
systemctl restart squid # add a user : create new file with [-c] option [root@prox ~]# htpasswd -c /etc/squid/.htpasswd rocky New password: # set password Re-type new password: Adding password for user rocky |
|
Proxy Client : Rocky Linux
|
| [3] | Configure Rocky Linux Proxy Client for Basic Authentication. |
|
[root@client ~]#
vi /etc/profile.d/proxy.sh # create new # username:password@proxyserver:port MY_PROXY_URL="rocky:password@prox.srv.world:3128" HTTP_PROXY=$MY_PROXY_URL HTTPS_PROXY=$MY_PROXY_URL FTP_PROXY=$MY_PROXY_URL http_proxy=$MY_PROXY_URL https_proxy=$MY_PROXY_URL ftp_proxy=$MY_PROXY_URL export HTTP_PROXY HTTPS_PROXY FTP_PROXY http_proxy https_proxy ftp_proxy
[root@client ~]#
source /etc/profile.d/proxy.sh
# or it's possible to set proxy settings for each application, not System wide # for [dnf]
[root@client ~]#
vi /etc/dnf/dnf.conf # add to the end proxy=prox.srv.world:3128 proxy_username=rocky proxy_password=password # for [curl]
[root@client ~]#
vi ~/.curlrc # create new proxy=prox.srv.world:3128 proxy-user=rocky:password # for [wget]
[root@client ~]#
vi /etc/wgetrc # add to the end http_proxy = prox.srv.world:3128 https_proxy = prox.srv.world:3128 ftp_proxy = prox.srv.world:3128 proxy_user = rocky proxy_passwd = password |
|
Proxy Client : Windows
|
| [4] | For Windows Clients, none of specific settings, but when access to a web, proxy server requires authentication like follows, then input username and password. |
|
Matched Content