LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices


Reply
  Search this Thread
Old 08-09-2010, 11:51 PM   #1
nehraaz
Member
 
Registered: Aug 2010
Location: Fiji Islands but currently worknig in Paua New Guinea (PNG)
Distribution: ubuntu
Posts: 36

Rep: Reputation: 1
Angry SQUID on UBUNTU 9.10


Hi I am trying to setup squid3 in Ubuntu 9.10 with windows authentication ON 2008 server.
I AM A 1 WEEK OLD NEWBIE AND all the posts get confusing as i go.

please can someone give me a simple setup. Squid3 is up and running
now i just need the authentication bit and i cant seem to be able to add it to my domain either.

Cheers and thanking you in advance for your help.
 
Old 08-10-2010, 01:56 AM   #2
linuxlover.chaitanya
Senior Member
 
Registered: Apr 2008
Location: Nagpur, India
Distribution: Cent OS 5/6, Ubuntu Server 10.04
Posts: 4,629

Rep: Reputation: Disabled
Quote:
Originally Posted by nehraaz View Post
Hi I am trying to setup squid3 in Ubuntu 9.10 with windows authentication ON 2008 server.
I AM A 1 WEEK OLD NEWBIE AND all the posts get confusing as i go.

please can someone give me a simple setup. Squid3 is up and running
now i just need the authentication bit and i cant seem to be able to add it to my domain either.

Cheers and thanking you in advance for your help.
You need to have ntlm authentication for squid to authenticate on windows domain. refer the link
http://www.flatmtn.com/article/setting-squid-ntlm-auth
 
Old 08-10-2010, 02:01 AM   #3
linuxlover.chaitanya
Senior Member
 
Registered: Apr 2008
Location: Nagpur, India
Distribution: Cent OS 5/6, Ubuntu Server 10.04
Posts: 4,629

Rep: Reputation: Disabled
Another wiki from squid official website that you might find useful. The link is self explanatory. So you can just read and configure as suggested. All the files that you need to configure are explicitly mentioned as well.

http://wiki.squid-cache.org/ConfigEx...icate/Kerberos
 
Old 08-10-2010, 02:18 AM   #4
nehraaz
Member
 
Registered: Aug 2010
Location: Fiji Islands but currently worknig in Paua New Guinea (PNG)
Distribution: ubuntu
Posts: 36

Original Poster
Rep: Reputation: 1
Hi

thanks for the prompt reply.

This is for 2003 server though. not 2008. Has anyone tried it with 2008 yet ?

Thanks for the help. I kinda like linux now being a microsoft guy for like a decade plus.

Now i just need to figure out which distro and packages to use.

Thanks for the help and please HELP ME OUT !!! (:- (my boss is rily up ma @zz bout this)

Cheers
 
Old 08-10-2010, 02:22 AM   #5
linuxlover.chaitanya
Senior Member
 
Registered: Apr 2008
Location: Nagpur, India
Distribution: Cent OS 5/6, Ubuntu Server 10.04
Posts: 4,629

Rep: Reputation: Disabled
It should work though. Have you tried the links? Or just read them and left cuz they talk about server 2003?
 
Old 08-10-2010, 02:42 AM   #6
EricTRA
LQ Guru
 
Registered: May 2009
Location: Gibraltar, Gibraltar
Distribution: Fedora 20 with Awesome WM
Posts: 6,805
Blog Entries: 1

Rep: Reputation: 1295Reputation: 1295Reputation: 1295Reputation: 1295Reputation: 1295Reputation: 1295Reputation: 1295Reputation: 1295Reputation: 1295
Hi,

linuxlover.chaitanya is correct. I will work with Windoze Server 2008 too. I don't use the ntlm authentication but the LDAP one:
Code:
auth_param basic program /lib/squid3/squid_ldap_auth -R -b "dc=domain,dc=com" -D "cn=squid,cn=Users,dc=domain,dc=com" -w "LDAPUSER" -f sAMAccountName=%s -h LDAPSERVER
and it works like a charm with Squid 3 set up as a reverse proxy.

Kind regards,

Eric
 
Old 08-10-2010, 06:37 PM   #7
nehraaz
Member
 
Registered: Aug 2010
Location: Fiji Islands but currently worknig in Paua New Guinea (PNG)
Distribution: ubuntu
Posts: 36

Original Poster
Rep: Reputation: 1
Quote:
Originally Posted by EricTRA View Post
Hi,

linuxlover.chaitanya is correct. I will work with Windoze Server 2008 too. I don't use the ntlm authentication but the LDAP one:
Code:
auth_param basic program /lib/squid3/squid_ldap_auth -R -b "dc=domain,dc=com" -D "cn=squid,cn=Users,dc=domain,dc=com" -w "LDAPUSER" -f sAMAccountName=%s -h LDAPSERVER
and it works like a charm with Squid 3 set up as a reverse proxy.

Kind regards,

Eric
Does it have to be added to the domain or can it be done without adding to the domain ?

I will try it out. Thanks people for all your help so far. think the finishing line is in sight now. Will do an update in a couple of hours on how i can.

Cheers. (i love this community already ) :-)
 
Old 08-11-2010, 01:21 AM   #8
EricTRA
LQ Guru
 
Registered: May 2009
Location: Gibraltar, Gibraltar
Distribution: Fedora 20 with Awesome WM
Posts: 6,805
Blog Entries: 1

Rep: Reputation: 1295Reputation: 1295Reputation: 1295Reputation: 1295Reputation: 1295Reputation: 1295Reputation: 1295Reputation: 1295Reputation: 1295
Hello,

You don't have to add the Squid server to the domain. Mine is in a DMZ, outside the domain and works without any problems. Authentication is provided in the parameter setting.

Kind regards,

Eric
 
Old 08-11-2010, 01:24 AM   #9
linuxlover.chaitanya
Senior Member
 
Registered: Apr 2008
Location: Nagpur, India
Distribution: Cent OS 5/6, Ubuntu Server 10.04
Posts: 4,629

Rep: Reputation: Disabled
But if you want to add squid to windows domain, you will have advantages of it. You will be able to control the access on the domain users. Unless you add squid to domain, it would not be able to get the user list from domain controller with wbinfo.
 
Old 08-19-2010, 07:40 PM   #10
nehraaz
Member
 
Registered: Aug 2010
Location: Fiji Islands but currently worknig in Paua New Guinea (PNG)
Distribution: ubuntu
Posts: 36

Original Poster
Rep: Reputation: 1
Sorry boss has given me till the end of the weekend...
Ok lets do this...just need some clarification. My domain is pexified.local so in that case is the following correct
"dc=proxified,dc=com" -D
what does cn mean > or do i just copy everything like that...oh by the way my qccount to access activbe directory is called squid as well..

please if u can give me the correct syntax.

Thanks for all the help so far...been a bit busy so i didnt get to catch up but am defintely spending the next 72 hours on this stuff (:

Cheers


Quote:
Originally Posted by EricTRA View Post
Hi,

linuxlover.chaitanya is correct. I will work with Windoze Server 2008 too. I don't use the ntlm authentication but the LDAP one:
Code:
auth_param basic program /lib/squid3/squid_ldap_auth -R -b "dc=domain,dc=com" -D "cn=squid,cn=Users,dc=domain,dc=com" -w "LDAPUSER" -f sAMAccountName=%s -h LDAPSERVER
and it works like a charm with Squid 3 set up as a reverse proxy.

Kind regards,

Eric
 
Old 08-20-2010, 02:19 AM   #11
nehraaz
Member
 
Registered: Aug 2010
Location: Fiji Islands but currently worknig in Paua New Guinea (PNG)
Distribution: ubuntu
Posts: 36

Original Poster
Rep: Reputation: 1
hi my domain name is pexified and my windows squid admin account is squid
auth_param basic program /lib/squid3/squid_ldap_auth -R -b "dc=domain,dc=com" -D "cn=squid,cn=Users,dc=domain,dc=com" -w "LDAPUSER" -f sAMAccountName=%s -h LDAPSERVER

can some please put the values in the right places for me please. also do i have to use pexified.local or just pexified.

thanks for the help so far.
cheers
 
Old 08-20-2010, 02:25 AM   #12
EricTRA
LQ Guru
 
Registered: May 2009
Location: Gibraltar, Gibraltar
Distribution: Fedora 20 with Awesome WM
Posts: 6,805
Blog Entries: 1

Rep: Reputation: 1295Reputation: 1295Reputation: 1295Reputation: 1295Reputation: 1295Reputation: 1295Reputation: 1295Reputation: 1295Reputation: 1295
Hi,

How is LDAP configured on your Windows server? Is your Windows domain called pexified.local? You can just try if you don't know, you might have some luck If you cannot authenticate then you'll need to check the settings of your Windows server.
Code:
auth_param basic program /lib/squid3/squid_ldap_auth -R -b "dc=pexified,dc=local" -D "cn=squid,cn=Users,dc=pexified,dc=local" -w "LDAPUSER" -f sAMAccountName=%s -h LDAPSERVER
the user 'squid' must be member of the Users group in Windows. Also subsitute LDAPSERVER for the hostname or IP of your Windows server.

Good luck!

Kind regards,

Eric
 
Old 08-20-2010, 02:32 AM   #13
nehraaz
Member
 
Registered: Aug 2010
Location: Fiji Islands but currently worknig in Paua New Guinea (PNG)
Distribution: ubuntu
Posts: 36

Original Poster
Rep: Reputation: 1
How does windows have to be configured ? No idea sorry mate . My domain is pexified but when i join XP workstations i put pexified.local to join. user sdquid is a member of admin group.

thanks for that bro. really appreciate it.

will try now

cheers ;-(
 
Old 08-20-2010, 02:39 AM   #14
nehraaz
Member
 
Registered: Aug 2010
Location: Fiji Islands but currently worknig in Paua New Guinea (PNG)
Distribution: ubuntu
Posts: 36

Original Poster
Rep: Reputation: 1
I get this error when applying config

FATAL: auth_param basic program /lib/squid3/squid_ldap_auth: (2) No such file or directory
Squid Cache (Version 3.0.STABLE19): Terminated abnormally.
CPU Usage: 0.008 seconds = 0.004 user + 0.004 sys
Maximum Resident Size: 33808 KB
Page faults with physical i/o: 0
 
Old 08-20-2010, 02:42 AM   #15
EricTRA
LQ Guru
 
Registered: May 2009
Location: Gibraltar, Gibraltar
Distribution: Fedora 20 with Awesome WM
Posts: 6,805
Blog Entries: 1

Rep: Reputation: 1295Reputation: 1295Reputation: 1295Reputation: 1295Reputation: 1295Reputation: 1295Reputation: 1295Reputation: 1295Reputation: 1295
Hi,

Check if the file exists in that directory:
Code:
locate squid_ldap_auth
will show you where the file is (if it's present on your system). If it shows you another location, change it in your config file and try starting Squid again.

Kind regards,

Eric
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Ubuntu squid proxy. BryMAy Linux - Server 2 07-06-2010 06:40 AM
Not able to install squid on ubuntu 9.04 aarav2306 Linux - Newbie 4 07-07-2009 01:07 PM
Ubuntu 8.10 - Squid with one nic only altavoltagem Linux - Networking 6 03-16-2009 01:39 PM
squid Ubuntu 8.04 aura_mj1003 Ubuntu 3 11-18-2008 07:01 PM
squid on ubuntu 7.10 hunter81 Linux - Newbie 3 05-27-2008 01:06 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie

All times are GMT -5. The time now is 03:06 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration