• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

Squid/SquidGuard Ldap User Cannot Authenticate if Password has special character

Scheduled Pinned Locked Moved Cache/Proxy
1 Posts 1 Posters 363 Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • W
    w.hackl
    last edited by Jan 19, 2021, 10:40 AM

    Hello ,
    I'M using

    PFSense 2.4.5_p1
    Squid 0.4.44_31
    squidGuard 1.16.18_7

    with a LDAP Auth Option for all Users to AD which is working fine except following Problem :

    if the user enters a AD Password with german umlaut ( in this case ü [ u umlaut ] ) no authentication is possible to squid / squid guard.

    related config in squid :

    auth_param basic program /usr/local/libexec/squid/basic_ldap_auth -v 2 -b 'dc=ad-domain,dc=somewhere' -D 'cn=administrator,cn=users,dc=ad-domain,dc=somewhere' -w 'workingpassword' -f 'samAccountname=%s' -u 'uid' -P -H 'ldap://X.X.X.X:3268'
    auth_param basic children 5
    auth_param basic realm Proxy Anmeldung
    auth_param basic credentialsttl 5 minutes
    acl password proxy_auth REQUIRED
    authenticate_ip_ttl 5 minute

    There are no errors in squid / squidguard logs , except the TCP_DENIED lines because of the "wrong" password.

    If the user changes the password with ü to u everything works fine.

    Any suggestions or commands to force squid to use the "right" characterset ?

    1 Reply Last reply Reply Quote 0
    1 out of 1
    • First post
      1/1
      Last post
    Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
      This community forum collects and processes your personal information.
      consent.not_received