Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    Squid/SquidGuard Ldap User Cannot Authenticate if Password has special character

    Cache/Proxy
    1
    1
    84
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • W
      w.hackl last edited by

      Hello ,
      I'M using

      PFSense 2.4.5_p1
      Squid 0.4.44_31
      squidGuard 1.16.18_7

      with a LDAP Auth Option for all Users to AD which is working fine except following Problem :

      if the user enters a AD Password with german umlaut ( in this case ü [ u umlaut ] ) no authentication is possible to squid / squid guard.

      related config in squid :

      auth_param basic program /usr/local/libexec/squid/basic_ldap_auth -v 2 -b 'dc=ad-domain,dc=somewhere' -D 'cn=administrator,cn=users,dc=ad-domain,dc=somewhere' -w 'workingpassword' -f 'samAccountname=%s' -u 'uid' -P -H 'ldap://X.X.X.X:3268'
      auth_param basic children 5
      auth_param basic realm Proxy Anmeldung
      auth_param basic credentialsttl 5 minutes
      acl password proxy_auth REQUIRED
      authenticate_ip_ttl 5 minute

      There are no errors in squid / squidguard logs , except the TCP_DENIED lines because of the "wrong" password.

      If the user changes the password with ü to u everything works fine.

      Any suggestions or commands to force squid to use the "right" characterset ?

      1 Reply Last reply Reply Quote 0
      • First post
        Last post

      Products

      • Platform Overview
      • TNSR
      • pfSense Plus
      • Appliances

      Services

      • Training
      • Professional Services

      Support

      • Subscription Plans
      • Contact Support
      • Product Lifecycle
      • Documentation

      News

      • Media Coverage
      • Press
      • Events

      Resources

      • Blog
      • FAQ
      • Find a Partner
      • Resource Library
      • Security Information

      Company

      • About Us
      • Careers
      • Partners
      • Contact Us
      • Legal
      Our Mission

      We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

      Subscribe to our Newsletter

      Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

      © 2021 Rubicon Communications, LLC | Privacy Policy