Andi,
It took a bit of working out exactly how to enable this on a WLC 5760, but it
looks like it is now. Cheers for that.
Great!
I’m not 100% sure my wired switches on my resnet are capable of doing macauth
(MAB), but I’ll investigate.
Since you are using “dumb devices”, you want to use a supplicant-less
authentication method. Which means, either RADIUS MAB (which is the preferred
way) or port-security using SNMP traps.
PacketFence needs a way to receive “alerts” if a MAC connects and a way to
switch the VLAN :)
Cheers!
dw.
--
Derek Wuelfrath
[email protected] :: +1.514.447.4918 (x110) :: +1.866.353.6153 (x110)
Inverse inc. (www.inverse.ca) :: Leaders behind SOGo (www.sogo.nu) and
PacketFence (www.packetfence.org)
On May 20, 2015 at 10:57:14, Morris, Andi ([email protected]) wrote:
Hi Derek,
It took a bit of working out exactly how to enable this on a WLC 5760, but it
looks like it is now. Cheers for that.
I’m not 100% sure my wired switches on my resnet are capable of doing macauth
(MAB), but I’ll investigate.
Thanks again,
Andi
From: Derek Wuelfrath [mailto:[email protected]]
Sent: 20 May 2015 15:12
To: [email protected]; Morris, Andi
Subject: Re: [PacketFence-users] gaming device registration workflow for wired
and wireless
Andi,
However I’m missing how my users actually will connect their devices to this
network. What is the workflow for users to connect their consoles wirelessly?
An open gaming SSID which points to the packetfence registration network?
Just by connecting them to an open (or PSK) SSID using mac-auth with dynamic
VLAN assignation configured.
Also, I’d like the option of wired connection. Does this work in the same way,
so the “dumb” device fails dot1x authentication on the switchport and the NAS
puts it into the registration vlan, where PF grabs it and recognises the
registered console, reassigning the vlan accordingly?
Exact same thing. Working with mac authentication, the switch will send RADIUS
request to PacketFence, will get the answers back from PF with the gaming VLAN.
Cheers!
dw.
--
Derek Wuelfrath
[email protected] :: +1.514.447.4918 (x110) :: +1.866.353.6153 (x110)
Inverse inc. (www.inverse.ca) :: Leaders behind SOGo (www.sogo.nu) and
PacketFence (www.packetfence.org)
On May 20, 2015 at 06:13:22, Morris, Andi ([email protected]) wrote:
Hi,
I’m trying to setup the device registration process for user to register their
own games consoles, and I have the basics setup:
device_registration=enabled
device_registration_role=gaming
The gaming role has been created, and assigned a vlan ID on my switch.
I’ve successfully registered my console using the /device-registration page and
I can see the console in the Nodes tab of the management interface, assigned to
the correct role.
However I’m missing how my users actually will connect their devices to this
network. What is the workflow for users to connect their consoles wirelessly?
An open gaming SSID which points to the packetfence registration network?
Also, I’d like the option of wired connection. Does this work in the same way,
so the “dumb” device fails dot1x authentication on the switchport and the NAS
puts it into the registration vlan, where PF grabs it and recognises the
registered console, reassigning the vlan accordingly?
Cheers,
Andi
-------------------------------------
Andi Morris
IT Security Officer
Cardiff Metropolitan University
T: 02920 205720
E: [email protected]
--------------------------------------
------------------------------------------------------------------------------
One dashboard for servers and applications across Physical-Virtual-Cloud
Widest out-of-the-box monitoring support with 50+ applications
Performance metrics, stats and reports that give you Actionable Insights
Deep dive visibility with transaction tracing using APM Insight.
http://ad.doubleclick.net/ddm/clk/290420510;117567292;y_______________________________________________
PacketFence-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/packetfence-users
------------------------------------------------------------------------------
One dashboard for servers and applications across Physical-Virtual-Cloud
Widest out-of-the-box monitoring support with 50+ applications
Performance metrics, stats and reports that give you Actionable Insights
Deep dive visibility with transaction tracing using APM Insight.
http://ad.doubleclick.net/ddm/clk/290420510;117567292;y_______________________________________________
PacketFence-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/packetfence-users
------------------------------------------------------------------------------
One dashboard for servers and applications across Physical-Virtual-Cloud
Widest out-of-the-box monitoring support with 50+ applications
Performance metrics, stats and reports that give you Actionable Insights
Deep dive visibility with transaction tracing using APM Insight.
http://ad.doubleclick.net/ddm/clk/290420510;117567292;y
_______________________________________________
PacketFence-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/packetfence-users
