Script to setup application Samba AD authentication in squid for pfSense® software

What is pf2ad ?

pf2ad is a script for automating installation via NTLM authentication environment / AD in squid for pfSense® software. The script already does all the work required to leave the pfSense® software compatible with AD and adds it as a member in the AD tree.

How to Run

The script is automatic, meaning you need not install anything, he will have to check the necessary dependencies and install the needed.

To make the application of change patches and NTLM authentication setting in pfSense® software, we will need version 2.4.x of pfSense® software (amd64). Remember that this version is compatible (will install if you have not) with squid and SquidGuard package, you will need web access or console (recommend using the console via ssh to monitor the process).

To use the patch, you need to make a record. This registration is paid, although the code is opened and the idea of the project is free, there was no incentive for it to be "alive", so this paid record was created.

Payment of this registration gives you the right to use the patch unlimitedly, making as many downloads as you need without restrictions. The only thing we ask is that you do not distribute the link with the key you will receive at the end of the record.

Upon payment, as soon as we receive confirmation of receipt of the amount, we will send you an email with the instructions for use and installation of the patch in your environment.

Value: 60.00 €

If you have any questions, please contact us by email:

Script source

See the source code and extra documentations about the project at Github repository.


To apply the patch, run the command:

SAMBA 4 to 2.4.4 version:

You must change the key variable (key=) with the one you received in your email

  fetch -q -o - "" | sh

Questions ? Access the forum Mundounix

It will upgrade the system package, add a custom repository with samba version with AD support, will if necessary the installation of the dependent packages (squid and SquidGuard), apply changes to the Squid package code and the system menu to add configuration options of AD authentication.

If you still choose to use the web-based, use the option Diagnostics » command prompt as the image below:



Below, a screencast demonstrating how to apply the script via terminal (ssh)

Once the patch is applied, check the options, as follows:

Procedure to add the pfSense® software in AD

Configure pfSense® software DNS to point to the AD server, with the options as follows

Configure the AD options

Once you apply the configuration, make sure the pfSense® software server was added in the tree Active Directory

Follow the procedure below a screencast

How to implement an LDAP filter in SquidGuard Optional

Did You Like It? Make a donation!

This script was written using hours of development, dedication and tests that came up to you. I will be very happy if my work this help you in something for your environment. Then I ask you to make a donation to the project so that I have resources to continue and maintain this and other projects.

Please contact me by email:


Send suggestions, criticisms to my email: