Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    Squid + OpenLDAP groups with single sign on/passthrough auth

    pfSense Packages
    1
    2
    1230
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • W
      workingman last edited by

      Hi all,

      I've been asked to attempt a setup as described in the subject line.

      The LDAP is running on an OSX server and I have been able to get squid to do user based LDAP auth.

      Problems I have are:

      1. the login popup in the browser (I have seen many docs saying the OS should share credentials but haven't been able to get that working)
      2. groups acl for ease of black/whitelisting the execs vs staff

      Ideally I would have no IP based rules, just one login to the machine and whatever OS it is (we have Win7, OSX and CentOS) would pass the credentials on to squid.

      Anyone fought this fight before and won?

      TIA…

      1 Reply Last reply Reply Quote 0
      • W
        workingman last edited by

        Hi all,

        I found out today that they're not opposed to replacing the OSX openLDAP if it is causing more problems that it's solving since it seems to be only doing half the job and then only really controlling the OSX machines.

        So I'm currently cooking up a debian virtual machine to try to prove that it can/should be replaced.

        Could anyone suggest the best approach?  I'd like to stay away from a Win AD setup if possible but if I must then maybe I must…

        Thanks!

        1 Reply Last reply Reply Quote 0
        • First post
          Last post

        Products

        • Platform Overview
        • TNSR
        • pfSense Plus
        • Appliances

        Services

        • Training
        • Professional Services

        Support

        • Subscription Plans
        • Contact Support
        • Product Lifecycle
        • Documentation

        News

        • Media Coverage
        • Press
        • Events

        Resources

        • Blog
        • FAQ
        • Find a Partner
        • Resource Library
        • Security Information

        Company

        • About Us
        • Careers
        • Partners
        • Contact Us
        • Legal
        Our Mission

        We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

        Subscribe to our Newsletter

        Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

        © 2021 Rubicon Communications, LLC | Privacy Policy