{% extends 'squid/auth/index.html' %} {% block title %}Explicit Proxy Auth{% endblock %} {% block toolbar_auth_explicit %}class="active"{%endblock%} {% block page_comment %}

If explicit proxy authentication is enabled only authenticated users will be able to access the Internet through this proxy. Squid will request user credentials from the browser (using such single-sign-on schemes as Kerberos or NTLM or asking user to type valid login/password into popup box) as described in Squid Wiki article. This type of authentication can be used in case of explicit proxy deployment only, when browser is configured to use the proxy.

{% endblock %} {% block page_content %}

Active Directory Authentication {%if authad.ldap_enable or authad.ntlm_enable or authad.krb5_enable %} Activated {% else %} Inactive {%endif%}

Active Directory authentication allows Squid to limit access to proxy based on user names and security groups stored in Microsoft AD. It is possible to authenticate to AD using Kerberos, NTLM and/or Basic LDAP authentication schemes. Please consult online documentation before configuring these settings.

 

Local User Authentication {%if authlocaldb.enable %} Activated {% else %} Inactive {%endif%}

Local user authentication allows administrator to create a predefined list of users and passwords for this proxy. When a user tries to connect, a popup is presented with request to enter user credentials. Squid verifies the validity of provided credentials and allows or denies web access. This method of authentication is common in small networks with limited number of users.

 

Radius Authentication {%if authradius.enable %} Activated {% else %} Inactive {%endif%}

Radius authentication allows administrator to authenticate proxy users with help of external Radius server. When a user tries to connect, a popup is presented requiring him to enter his credentials. Squid sends provided credentials to configured Radius server and allows or denies web access based on the Radius response.

 

{% endblock %}