Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    SquidGuard binding with Active Directory

    Scheduled Pinned Locked Moved pfSense Packages
    3 Posts 3 Posters 2.4k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • I
      infopv
      last edited by

      Hello,

      I'm trying to bind SquidGuard with my 2008r2 server. I want to create specific rules for some groupes of my LDAP tree.

      I configured the LDAP Option in the filter:

      • LDAP DN => CN=squid,DC=dc,DC=com
      • LDAP version 3

      and one group ACL :
      Name => test
      Client (source) => ldapusersearch ldap://ip/DC=dc%2cDC=com?sAMAccountName?sub?(&(sAMAccountName=%s)(memberOf=CN=ggproxyessai%2cDC=dc%2cDC=com))

      The rules applyed to this group works (I tried to give my ip instead of the ldapsearch)

      How can I see more logs about the ldap request ? I saw in /var/squid/logs/access.log that my client is blocked by the filter but there is no more detail.
      Do you have an idea ?


      pfsense 2.1-RELEASE, squid  2.7.9 pkg v.4.3.3, squidGuard 1.4_4 pkg v.1.9.5

      1 Reply Last reply Reply Quote 0
      • A
        akha666
        last edited by

        I have some issues with SquidGurad
        when I enable "LDAP Option" in General Settings all web sites open to all users , I make All deny in common page and create rule in Groups ACL to apply filter on Domain Groups with no luck
        I have Domain 2012
        pfs 2.1.5 x64
        Squid 2.7.9
        SquidGuard  1.4_4

        can any one help ?

        1 Reply Last reply Reply Quote 0
        • I
          ilkin.nazarov
          last edited by

          Akha666 I had the same problem.
          Please consider that you should choose symbols allowed in pfsense:

          Password must be initialize with letters (Ex: Change123), valid format: [a-zA-Z/][a-zA-Z0-9/_-./:%+?=&]

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.