Time for action – configuring Squid to use SASL authentication
To configure the SASL authenticator, we need to create a file named basic_sasl_auth.conf with the following content:
pwcheck_method:sasldb
Move this file to the
/usr/lib/sasl2/directory.Once we have placed the configuration file in the appropriate directory, we can add the following line in our configuration file to ensure the use of SASL authentication:
auth_param basic program /opt/squid/libexec/basic_sasl_auth
This command will configure Squid to use the basic_sasl_auth program as an SASL authentication helper.
Note
The basic_sasl_auth requires the Cyrus SASL library (http://asg.web.cmu.edu/sasl/).
What just happened?
We learned to configure the SASL authenticator and then configure Squid to use SASL authentication.
getpwnam authentication
The getpwnam authentication helper can allow Squid to authenticate local users. This authentication helper uses the getpwnam()
Unix utility to locate users who have login accounts on the Squid...
