Hello Miguel,
Put -1 as the registration VLAN setting under each switch you want to kick
device out.
-1 returns a reject.
Thanks,
Ludovic Zammit
Product Support Engineer Principal Lead
Cell: +1.613.670.8432
Akamai Technologies - Inverse
145 Broadway
Cambridge, MA 02142
Connect with Us:
Hello there,
Did you run the schema upgrade from 12.1 to 13.0 ?
root@PF:/usr/local/pf# ls -ltr db/upgrade-12*
-rw-r--r-- 1 pf pf 1569 Nov 13 00:24 db/upgrade-12.2-13.0.sql
-rw-r--r-- 1 pf pf 2485 Nov 13 00:24 db/upgrade-12.1-12.2.sql
-rw-r--r-- 1 pf pf 1710 Nov 13 00:24 db/upgrade-12.0-12.1.sql
Hello Giuliano,
Two solutions, the first one is to do 802.1x with auto registration, the device
will be evaluated on the fly on each connection so getting the role and VLAN
that he belongs to.
Second solution keeping the captive portal, is to put a smaller registration
window or access
Hello,
For a upcoming project I am testing the captive portal for wired users.
I installed the latest version of Packetfence (13.0.0) in a lab
environment (based on Cisco devices) I did the basic configuration
(Network, DNS, Cert, MAC-Authentication).
The MAB ist working fine. Within Radius
Are you referring to Radius COA? from what it seems, no... it looks
like you're talking about AD COA.. meaning, when the user changes AD
groups you'd want him to automatically change state?
Right now I think the only option would be some sort of script.. that
performs the group membership change
Please visit the following link
May be helpful for you, but Aruba devices used in the example
https://www.ospimenta.com/artigos/packetfence-part2/
https://www.ospimenta.com/artigos/packetfence-part3/
Regards
Thirunavukkarasu
--
We are gradually phasing out EAP-MSCHAPv2. We configured EAP-TLS via GPO but we
couldn't find an easy way to see which devices are still using MSCHAPv2 without
going into each device detail or in the audit log.
Is there a way to trigger a security event when an EAP-MSCHAPv2 authentication