Hi Kerry, On 04/10/10 8:51 AM, Kerry Milestone wrote: > Hello, > > I'd like some advice on where to start configuring PacketFence for our > network. > > When a machine appears on the network, I'd like the pf to query the LDAP > server and the LDAP server returns which VLAN > the device should be in (based on MAC or dot1x). We have many hundred VLANs, > and I don't want to have to configure pf > to have prior knowledge of VLAN's so for instance the web admin tool with its > 5 'custom vlans' isn't near enough. > > For the most part, devices would be entered in the database and registration > shouldn't be required.
Put some code in custom_getCorrectVlan to go and fetch that VLAN through LDAP. In 1.9.x the 802.1X username won't be available there but in our trunk code repository (unreleased yet) it will. Things to keep in mind: - make sure you are operating in a thread safe manner (this is called inside threads) - I would recommend looking into caching or a fallback if LDAP is unreachable, it happened to us in the past If you don't have perl developers handy, you might consider getting support. Have a nice day! -- Olivier Bilodeau obilod...@inverse.ca :: +1.514.447.4918 *115 :: www.inverse.ca Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence (www.packetfence.org) ------------------------------------------------------------------------------ Nokia and AT&T present the 2010 Calling All Innovators-North America contest Create new apps & games for the Nokia N8 for consumers in U.S. and Canada $10 million total in prizes - $4M cash, 500 devices, nearly $6M in marketing Develop with Nokia Qt SDK, Web Runtime, or Java and Publish to Ovi Store http://p.sf.net/sfu/nokia-dev2dev _______________________________________________ Packetfence-users mailing list Packetfence-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/packetfence-users
