Hello Francis, wpa_supplicant can be used to authenticate the machine once the ethernet interface goes up. Ubuntu seems to already have some script inside the /etc/network/ifup.d.
I never managed to do that but i think it's possible. The following link can provide you some idea https://wiki.gentoo.org/wiki/Wpa_supplicant#Setup_wired_802.1X If you are not using the certificate to authenticate your machine then you have to extract the password from the domain controller i suppose. Regards Il giorno mar 21 mar 2023 alle ore 16:26 Francis via PacketFence-users < packetfence-users@lists.sourceforge.net> ha scritto: > Hello, > > I was able to configure Packetfence to do machine authentication for > Windows desktops. I'm using AD as an authentication source configured with > the computers OU, so user authentication is not possible. This works fine > for both wired 802.1x and WPA2-Enterprise wifi. > > Now I wonder how to do the same thing I did on Windows on my Linux > (Ubuntu) desktops. Like Windows desktops, we joined them to our AD domain > (with sssd). So I guess there is a way to authenticate the computers with > the AD computer object, but I fail to see how to do it after I did multiple > searches. > > Network-Manager seems to only allow user-inputed credentials for > PEAP/MSCHAPv2 authentication. > > The goal is to authorize only corporate devices in the employees vlan. All > other unknown devices are restricted to the guest vlan. This is why I'm > trying to do computer auth and not user auth. > > Thank you. > > -- > Francis > _______________________________________________ > PacketFence-users mailing list > PacketFence-users@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/packetfence-users >
_______________________________________________ PacketFence-users mailing list PacketFence-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/packetfence-users
