John, > can this be configured that after every linkup/linkdown trap event (or > you know maybe a better method) a user must supply the password? > 802.1X is an entire authentication mechanism, the linkup/linkdown traps are kind of useless for this type of authentication. The port access entirely managed by the switch and PacketFence RADIUS. When a user connects to an 802.1X enabled port, the switch will "ask" the credentials to the client, and send the authentication request to the RADIUS server using EAP. (This is more complicated than that tho, but this is just as an example). RADIUS will then authorize the user, and send back a VLAN id to assign to the port. At this point, the user will have network access.
> Does Packetfence store data when which user with what mac address was > online? A kind of user access historization? Yes, it is stored in the locationlog table. We store MAC addresses, last 802.1x username, last switch port, etc, etc. This is not presented by default in the web interface, but it's quite easy to design custom reports for that. Thanks! -- Francois Gaudreault, ing. jr [email protected] :: +1.514.447.4918 (x130) :: www.inverse.ca Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence (www.packetfence.org) ------------------------------------------------------------------------------ Gaining the trust of online customers is vital for the success of any company that requires sensitive data to be transmitted over the Web. Learn how to best implement a security strategy that keeps consumers' information secure and instills the confidence they need to proceed with transactions. http://p.sf.net/sfu/oracle-sfdevnl _______________________________________________ Packetfence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users
