Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Squid Authentication LDAP failure

    Scheduled Pinned Locked Moved Cache/Proxy
    3 Posts 3 Posters 1.1k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • A Offline
      Abhishek
      last edited by

      Squid with wpad working perfectly now i am trying to setup with AD authentication , i am able to test AD auth with ldap from diagnostic >Auth  its sucess but when i try via Login windows which shows in webpage (user auth popup ) it fails

      PFsenseLDAP admin shown in pic is admin
      Squid1.PNG
      Squid1.PNG_thumb
      Squid2.PNG
      Squid2.PNG_thumb
      Squid3.PNG
      Squid3.PNG_thumb
      squid4.PNG
      squid4.PNG_thumb
      squid5.png
      squid5.png_thumb
      squid6.PNG
      squid6.PNG_thumb

      2.3-RC (amd64)
      built on Mon Apr 04 17:09:32 CDT 2016
      FreeBSD 10.3-RELEASE
      Intel(R) Core(TM)2 Duo CPU E4500 @ 2.20GHz

      darkstat 3.1.2_1
      Lightsquid 3.0.3_1
      mailreport 3.0_1
      pfBlockerNG 2.0.9_1  
      RRD_Summary 1.3.1_2
      snort 3.2.9.1_9  
      squid 0.4.16_1  
      squidGuard 1.14_1
      syslog-ng 1.1.2_2

      1 Reply Last reply Reply Quote 0
      • C Offline
        chrisnet46
        last edited by

        Hi Abhishek,

        Diagnostic > auth will not help you diagnose LDAP connexion problem for the Squid module. This test helps diagnose LDAP connection failure for system/user manager/servers (authentication servers).

        I just start using pfsense and struggle connecting it to my AD because Squid package doesn't like having French accents in its connection string.

        Maybe you entered the wrong LDAP password or the character "&" in your OU is not allowed. Try with a more simple OU name.

        Chris

        1 Reply Last reply Reply Quote 0
        • C Offline
          chris4916
          last edited by

          FYI, some RFCs like 4515 describe string representation in search filters and especially characters that must be escaped.
          ampersand is clearly one of these which means it requires backslash as an escape character.

          Jah Olela Wembo: Les mots se muent en maux quand ils indisposent, agressent ou blessent.

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.