Hello all, PacketFence noob here asking for advices.
Our setup included one WLC (unsupported by PacketFence), PacketFence and Freeradius. Remote clients authenticate using 802.1X against Radius database (we use DaloRadius for quick test). The authentication part run well, but after the post-auth, we got Access-Reject with "Reply-Message = "Switch is not managed by PacketFence",probably from rlm_perl. Sure enough, our WLC was not registered in PacketFence switches.conf. To make PacketFence accept our WLC, I added a dummy switch configuration into switches.conf, with mode=testing, that help to get the Access-Accept from PacketFence radius. If I understand it right, the way Packetfence works with the switches is: reading MAC from SNMP trap, after Radius authentication, using SNMP write to trig the switch to put devices into specific VLAN. Questions is: can we achieve the same effect using Radius?? Our WLC already support Tunnel-Type, Tunnel-Medium-Type,Tunnel-Private-Group-ID inside the Radius Access-Accept, so WLC can put the devices into right VLAN anyway. Therefore dropping a need for supported switch?? Thanks for your time, Nam Nguyen Diginet JSC., ------------------------------------------------------------------------------ Want excitement? Manually upgrade your production database. When you want reliability, choose Perforce Perforce version control. Predictably reliable. http://pubads.g.doubleclick.net/gampad/clk?id=157508191&iu=/4140/ostg.clktrk _______________________________________________ PacketFence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users
