[squid-users] Need help with cert based authentication
Zaheer Shaikh
zaheer at google.com
Wed Apr 20 02:46:10 UTC 2022
> We have setup squid proxy for outbound connection from one our SAP servers
> to few services on internet.
> While basic auth (username and password) works perfectly with this setup,
> we are struggling to get it working with cert based authentication.
>
> Certs are in p12 format.
>
> This is what our squid config looks like
>
>
> acl sap src 0.0.0.0/0
>
> acl whitelist dstdomain "/etc/squid/sites.whitelist.txt"
>
>
>
> acl safeports port 443 # https
>
> acl safeports port 80 # http
>
>
> acl CONNECT method CONNECT
>
>
> http_access allow safeports sap whitelist
>
> http_access deny !safeports
>
> http_access deny CONNECT !safeports
>
> http_access deny all
>
>
> http_port 3128
>
>
>
> Any pointers are highly appreciated.
>
>
>
> Zaheer Shaikh | Corp Eng SRE, Google | zaheer at google.com |
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.squid-cache.org/pipermail/squid-users/attachments/20220419/c8d73fbb/attachment-0001.htm>
More information about the squid-users
mailing list