Re: [PacketFence-users] How to identify the user type?

Wed, 02 Apr 2014 09:09:02 -0700 

Hi Fabrice,

Thank you for the tips, but could you please give me more details on how to
get this done as I am not good at programming.

I have copied the function "sub getViolationVlan {....}" from
/usr/local/pf/lib/pf/vlan.pm  and pasted to /usr/local/pf/lib/pf/vlan/
custom.pm.

Then how do I do the test? Where should I put the script you mentioned
below?  Are 666 and 777 in your script the vlan id of isolation vlan?
Thanks again for your help.



On Fri, Mar 28, 2014 at 8:18 AM, Fabrice DURAND <[email protected]> wrote:

>  Hello,
>
> i suppose that you set roles based on the registration source, like AD ->
> Employee and Sponsor -> Guest.
>
> In fact you have to overwrite the vlan id of the isolation vlan, look at
> the vlan/custom.pm and add function getViolationVlan (copy and paste from
> vlan.pm).
>
> Now you will be able to write your own test like:
>
> if ($node_info->{'category'} eq 'Employee') {
>     return 666;
> elsif ($node_info->{'category'} eq 'Guest') {
>     return 777;
> }
>
>
> Regards
> Fabrice
>
> Le 2014-03-27 12:17, forbmsyn a écrit :
>
> Hi,
>
>  I have two types of user: one registered via sponsor, I call it client;
> the other one is Active Directory user, I call it employee.
>
>  After the device being scanned by Nessus and a violation was triggered,
> I would like to redirect the device to different vlans depends on the type
> of the login user.  For example the client will be switched to
> isolation_client vlan, while the employee will be switched to
> isolation_employee vlan.  Is there a way to accomplish this?
>
>  Thanks a lot in advance.
>
>
> ------------------------------------------------------------------------------
>
>
>
> _______________________________________________
> PacketFence-users mailing 
> [email protected]https://lists.sourceforge.net/lists/listinfo/packetfence-users
>
>
>
> --
> Fabrice [email protected] ::  +1.514.447.4918 (x135) ::  www.inverse.ca
> Inverse inc. :: Leaders behind SOGo (http://www.sogo.nu) and PacketFence 
> (http://packetfence.org)
>
>
>
> ------------------------------------------------------------------------------
>
> _______________________________________________
> PacketFence-users mailing list
> [email protected]
> https://lists.sourceforge.net/lists/listinfo/packetfence-users
>
>

------------------------------------------------------------------------------

_______________________________________________
PacketFence-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/packetfence-users

Reply via email to