Quick Tip: Windows Update No-AuthHere’s a quick Squid tip from their wiki, if you’ve ever wanted to not require authentication for the Windows Update services you can just add the following before any other ACL’s in your config file –
acl windowsupdate dstdomain windowsupdate.microsoft.com acl windowsupdate dstdomain .update.microsoft.com acl windowsupdate dstdomain download.windowsupdate.com acl windowsupdate dstdomain redir.metaservices.microsoft.com acl windowsupdate dstdomain images.metaservices.microsoft.com acl windowsupdate dstdomain c.microsoft.com acl windowsupdate dstdomain www.download.windowsupdate.com acl windowsupdate dstdomain wustat.windows.com acl windowsupdate dstdomain crl.microsoft.com acl windowsupdate dstdomain sls.microsoft.com acl windowsupdate dstdomain productactivation.one.microsoft.com acl windowsupdate dstdomain ntservicepack.microsoft.com acl CONNECT method CONNECT acl wuCONNECT dstdomain www.update.microsoft.com acl wuCONNECT dstdomain sls.microsoft.com http_access allow CONNECT wuCONNECT localnet http_access allow windowsupdate localnet
This allows the HTTPS and HTTP connections to the suite of Microsoft update sites without authentication. This can be particularly useful if you want to ensure users can update at any time, without needing to enter their information into popup boxes (i.e. non single sign-on setups). There is a quick wizard included in Snapt if you want to automate this!
Tags: authentication, Squid, tip
