On 7/01/2012 4:55 a.m., Pascal Moutia wrote:
Hi,
There is my situation:
My client log-in to the WIFI using WPA-2 enterprise using a Raduis server authentication system ( all working with Cisco systems ), I need to put a squid proxy that will be transparent for the client, but that will keep log.
There is my question:
Can I use the squid's log to retrieve http actions by user.
Yes, BUT it depends on how you configured the client to use the proxy.
If you used "transparent" web proxy auto-discovery (WPAD) and one of the
single-sign-on "transparent" authentication protocols. Then yes, the log
contains username.
If you used NAT interception (wrongly called "transparent proxy") or
transparent proxy (TPROXY) interception then you can do it with an
external_acl_type helper. The helper needs to lookup details in radius,
find the users name and send it back to Squid for logging.
Squid 3.1 and older only have access to the IP address details for the
helper. If you need MAC/EUI details you will need Squid-3.2.
Amos
