Hello Virginie,

Show the radius reply in the Auditing.

Thanks,

Ludovic Zammit
Product Support Engineer Principal Lead

Cell: +1.613.670.8432
Akamai Technologies - Inverse
145 Broadway
Cambridge, MA 02142
Connect with Us:         <https://community.akamai.com/>  
<http://blogs.akamai.com/>  <https://twitter.com/akamai>  
<http://www.facebook.com/AkamaiTechnologies>  
<http://www.linkedin.com/company/akamai-technologies>  
<http://www.youtube.com/user/akamaitechnologies?feature=results_main>

> On Dec 17, 2024, at 5:19 AM, VIRGINIE GIROU via PacketFence-users 
> <packetfence-users@lists.sourceforge.net> wrote:
> 
> This Message Is From an External Sender
> This message came from outside your organization.
> Hello,
> 
> I have a packetfence 8.3 running for years now and i have just installed a 
> packetfence v14 to replace it.
> 
> I configure a captive portal with external radius and i face a problem of 
> autentication.
> 
> Here is the log I have :
> 
> packetfence.log:Dec 16 15:55:36 hotspot-rj 
> httpd.portal-docker-wrapper[22543]: httpd.portal(296) INFO: 
> [mac:a4:4c:c8:74:7e:3a] Instantiate profile HOTSPOT 
> (pf::Connection::ProfileFactory::_from_profile)
> packetfence.log:Dec 16 15:55:36 hotspot-rj 
> httpd.portal-docker-wrapper[22543]: httpd.portal(296) INFO: 
> [mac:a4:4c:c8:74:7e:3a] Allowing user through portal even though he is 
> registered as the release bypass is set and the connection profile is 
> configured to let registered users use the registration module of the portal. 
> (captiveportal::PacketFence::DynamicRouting::Module::Root::execute_child)
> packetfence.log:Dec 16 15:55:37 hotspot-rj 
> httpd.portal-docker-wrapper[22543]: httpd.portal(296) INFO: 
> [mac:a4:4c:c8:74:7e:3a] Found authentication source(s) : 'radius_ut1' for 
> realm 'null' (pf::config::util::filter_authentication_sources)
> packetfence.log:Dec 16 15:55:37 hotspot-rj 
> httpd.portal-docker-wrapper[22543]: httpd.portal(296) INFO: 
> [mac:a4:4c:c8:74:7e:3a] Authenticating user using sources : radius_ut1 
> (captiveportal::PacketFence::DynamicRouting::Module::Authentication::Login::authenticate)
> packetfence.log:Dec 16 15:55:37 hotspot-rj 
> httpd.portal-docker-wrapper[22543]: httpd.portal(296) ERROR: 
> [mac:a4:4c:c8:74:7e:3a] Unable to perform RADIUS authentication on any 
> server: EBADAUTH 
> (pf::Authentication::Source::RADIUSSource::_handle_radius_request)
> But wireshark running both on my radius and packetfence show me 
> access-request from packetfence and access-accept from radius.
> 
> How could I know what is wrong in the access-accept reply that packetfence 
> considers as "badauth"?
> 
> Thank you for your help.
> 
>  
> <https://urldefense.com/v3/__https://www.ut-capitole.fr__;!!GjvTz_vk!XrT9lEnj9Uy8iUcKa1b5sDXdZTS6ENSJvCOgyKfRmPSurxYSN_LUOXwwHly0mezLFYhafaT-ARlIEDkV5O45Q2NaJbYnqeOKtGpbGg$>
>         Virginie Girou
> Equipe Systèmes-Réseaux
> Direction des Systèmes d'Information
> +33 (0)5 61 63 39 19
> Bureau AR 136
> 
> _______________________________________________
> PacketFence-users mailing list
> PacketFence-users@lists.sourceforge.net 
> <mailto:PacketFence-users@lists.sourceforge.net>
> https://urldefense.com/v3/__https://lists.sourceforge.net/lists/listinfo/packetfence-users__;!!GjvTz_vk!XrT9lEnj9Uy8iUcKa1b5sDXdZTS6ENSJvCOgyKfRmPSurxYSN_LUOXwwHly0mezLFYhafaT-ARlIEDkV5O45Q2NaJbYnqeOuKgDaoQ$

Attachment: smime.p7s
Description: S/MIME cryptographic signature

_______________________________________________
PacketFence-users mailing list
PacketFence-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/packetfence-users

Reply via email to