Hi all I want to make a proxy from windows user to another proxy. The other proxy made authentication with Windows ID. I want to make an automatic authentication when a client use Internet Explorer. I don't want that users must send their personnal ID manually for squid for the other proxy
user --------------------->squid------------------------->proxy For the moment, I use samba 2.X like FAQ 23.5 The authentication works fine with squid but the other proxy ask me to authenticate me manually. I don't know if it is my conifiguration which it's bad or If it is impossible to squid to send ntlm authentication to an other proxy. For the moment, I made nltm authentication for squid and I have create a generic user and use it to send a login and a password to the other proxy and he works fine. But this is only the last solution, if you have a better solution to do this it will be fantastic. For the moment I use squid-2.5 but I want to use squid 3. With squid 2.5 my idea (generic user) works good, with squid3 it works good with one user, I don't made a lot of tests but it seems he doesn't work good if more than one user use the squid proxy. This is a part of my configuration file for squid 2.5 auth_param ntlm program /usr/local/squid2/libexec/wb_ntlmauth auth_param ntlm children 1 auth_param ntlm max_challenge_reuses 0 auth_param ntlm max_challenge_lifetime 2 minutes auth_param basic program /usr/local/squid2/libexec/wb_auth auth_param basic children 5 auth_param basic realm Squid proxy-caching web server auth_param basic credentialsttl 2 hours cache_peer proxy parent 3128 0 no-query proxy-only login=generic-user:password acl all src 0.0.0.0/0.0.0.0 acl auth proxy_auth REQUIRED http_access deny !auth This is a part of my configuration file for squid 3 cache_peer proxy parent 3128 0 name=cache1 no-query proxy-only login=generic-user:password cache_peer proxy2 parent 80 0 name=cache2 no-query proxy-only # pour samba squid auth_param ntlm program /usr/local/squid3/libexec/wb_ntlmauth auth_param ntlm children 20 auth_param ntlm max_challenge_reuses 5 auth_param ntlm max_challenge_lifetime 2 minutes auth_param basic program /usr/local/squid3/libexec/wb_auth auth_param basic children 5 auth_param basic realm Squid proxy-caching web server auth_param basic credentialsttl 2 hours acl all src 0.0.0.0/0.0.0.0 acl auth proxy_auth REQUIRED acl forbidden url_regex fiel_forbidden http_access deny !auth cache_peer_access cache1 deny forbidden cache_peer_access cache2 allow forbidden To send the userID/password I try to use cache_peer proxy parent 80 0 name=cache1 no-query proxy-only login=PASS But if I understand the documentation PASS is only for basic authentification. If you have an idea , please help me Thanks PS : Sorry for my english # Ce courrier et les documents qui y sont joints peuvent contenir des informations confidentielles. Au cas ou vous n'en seriez pas le bon destinataire, vous etes prie de le detruire et de nous en informer immediatement. This email and any attached documents may contain confidential information. If you are not the correct addressee, please advise us immediately and delete it. # ...