According to the cupsd.conf documentation, one should be able to “require authentication for remote access, but allow local access without authentication.” There doesn’t appear to be any other documentation on this subject.
I tried putting the following in my cupsd.conf:
<Location />
# Restrict access to the server...
Allow from 192.168.1.0/24
Require valid-user
Satisfy any
Order allow,deny
</Location>
It doesn’t work for me.
Has anyone gotten this to work? Is there an example cupsd.conf available with this configuration?
Add the following lines to you snippet:
Allow from localhost
Allow from 127.0.0.1
Deny from all
and change the Order line to
Order deny,allow
so it reads:
<Location />
# Restrict access to the server 'root' location...
Allow from 192.168.1.1/24
Allow from localhost
Allow from 127.0.0.1
Deny from all
Require valid-user
Satisfy any
Order deny,allow
</Location>
Should this not be sufficient, add the same settings for the <Location /printers> and the </Location /admin>:
<Location /printers>
# Restrict access to the server's shared printers...
Allow from 192.168.1.1/24
Allow from localhost
Allow from 127.0.0.1
deny from all
Require valid-user
Satisfy any
Order deny,allow
</Location>
Check more discussion of this question.