[SOLVED] Proxy authentification problem

Started by coom, February 09, 2016, 11:11:07 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
February 09, 2016, 11:11:07 PM Last Edit: February 11, 2016, 02:20:07 PM by coom
Hi,

I am testing OPNsense 16.1.2-amd64 in a lab environment since 2 days. I would like to test the integrated squid with Local database based authentification, but it seems squid doesn't accept my login/password ?

Here is what I have done under the webui configuration :

Proxy authentification configuration :


I created a test user with "test" as password :


I check that the login and the password are OK :


But when I configure my browser (tested with both IE and Firefox) to use OPNSense as the proxy (192.168.1.254 on port 3128), the browser keep asking for the password :



I even tried with the root login : still no luck.  :(

Has someone an idea about what I did wrong please ?

Thanks by advance, and please excuse my english which is horrible..  :-[
February 10, 2016, 10:41:06 AM #1
Your auth settings look normal, maybe the local subnet for your network isn't allowed.
Can you check "Allow interface subnets" and "Proxy interfaces" in the general forward settings?
February 10, 2016, 11:13:04 AM #2
Hi,

Here is what you asked to me :



My settings seems correct, but it doesn't work.
February 10, 2016, 11:14:18 AM #3
You problem probably is transparant mode, can you try to disable that?
February 10, 2016, 11:37:57 AM #4
AdSchellevis: thank you for trying to help me.

I had unchecked the Transparent proxy box, and then rebooted the FW, but same thing.. Firefox keep asking me for the login/password.

When I try this on a pfSense, everything is working well.

Am i missing something?
February 10, 2016, 11:49:52 AM #5
Up
February 10, 2016, 01:36:33 PM #6
does you local user has "user-proxy-auth" rule set?
For local users it checks for this role, but I think isn't described in the comments I guess.
February 11, 2016, 01:39:18 PM #7
Hi,

Where do I set this rule on my user please ? I cannot find what you're talking about in the WebUI .. :/
February 11, 2016, 01:41:08 PM #8
1) Go to System -> Access -> User
2) Edit your user
3) scroll down to "Effective Privileges" and add "user-proxy-auth"

You can also use groups and set this privilege on group level.
February 11, 2016, 01:51:55 PM #9
AdSchellevis, you're the best ! I was missing that part of the config needed, sorry, my mistake !

I can continue my tests, and I appreciate your help. Thank you very much !  :D
Print
Go Up Pages1
User actions