[PacketFence-users] Portal/RADIUS Behavior - Post-Registration

Tue, 07 Jan 2020 08:58:25 -0800 

Right now we have 2 SSIDs and are doing out-of-band. An open one and a DPSK 
one. Here is how the authentication works currently:
        1.  User connects to open ssid and is put in the registration vlan
        2.  Logs into captive portal
        3.  Retrieves DPSK for their account
        4.  User connects to DPSK ssid
        5.  User logs into captive portal
        6.  Device is now registered to user
        7.  Role based VLAN is configured and device is moved to appropriate 
VLAN
So, everything is working beautifully as far as access is concerned. Here are 
my questions:
        1.  How do I perform registration after 2, while showing the user their 
DPSK in 3? This would hopefully get rid of 5 and simplify things for the users. 
From all of the combinations I've tested with portal profiles, I can either 
perform a login and register or perform a login and show the dpsk, not both as 
a chained event. 
        2.  How do I prevent people from reconnecting to the open ssid after 
they register? If they reconnect they're automatically provisioned to their 
role based vlan and never get the captive portal again. Is there a way to do a 
radius reject only when they connect to that ssid if they're registered or only 
allow them to get to the captive portal and no further?
Thanks!
-Ryan






This e-mail message together with any attachments or reply should not be 
considered private or confidential because it may be archived and subject to 
public disclosure under certain circumstances, such as requests made pursuant 
to Wisconsin public records law.

The message is intended solely for the use of the individual or entity to which 
they are addressed.  Please notify the sender immediately by e-mail if you have 
received this e-mail by mistake and delete this e-mail from your system.  
Please note that the views or opinions presented in this e-mail are solely 
those of the author and do not necessarily represent those of the School 
District of Hartford Jt. #1.  Any unauthorized use, distribution, copying or 
disclosure by you or to any other person is prohibited. 




_______________________________________________
PacketFence-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/packetfence-users






















					Reply via email to