Hi all,
Firstly, can I apologise in advance, I don't think this is actually a
packetfence issue, however other users of packetfence may have come across this
and might be able to help me resolve it.
Since yesterday we are seeing our wired devices on our packetfence controlled
network being prompted for credentials each time they are plugged in/turned
on/rebooted, and often the credentials are being rejected.
Radius debug logs show that Access-Accept is being sent to the device, but the
device is not ever getting onto the network.
Enabling debug on my Cisco 2960 test switch I can see the error below:
%DOT1X_SWITCH-5-ERR_ADDING_ADDRESS: Unable to add address
I'm not 100% convinced that this is the same error that we're seeing on our
user switches, I'm waiting for some hits on other switches I've enabled
debugging on to confirm this.
The reason I don't think that this is a packetfence/radius issue is that we're
not having any issues with wireless clients.
I don't know yet whether it is affecting just Windows users or everyone, I'm
waiting for confirmation on this.
We are not forcing devices to validate radius certificates (yet).
Has anyone seen this before?
Cheers,
Andi
-------------------------------------
Andi Morris
IT Security Officer
Cardiff Metropolitan University
T: 02920 205720
E: [email protected]<mailto:[email protected]>
--------------------------------------
------------------------------------------------------------------------------
Shape the Mobile Experience: Free Subscription
Software experts and developers: Be at the forefront of tech innovation.
Intel(R) Software Adrenaline delivers strategic insight and game-changing
conversations that shape the rapidly evolving mobile landscape. Sign up now.
http://pubads.g.doubleclick.net/gampad/clk?id=63431311&iu=/4140/ostg.clktrk
_______________________________________________
PacketFence-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/packetfence-users
