I think I'm getting close, but I'm having trouble.
When I try to use myself as a sponsor ([email protected]), I get an error on the
self-reg page, "Email [email protected] is not allowed to sponsor guest accesse"
However, the following line is generated in packetfence.log:
packetfence.log:Jun 30 09:28:48 httpd.portal(18847) INFO: [Sponsor-AD2
AuthorizedSponsors] Found a match (CN=gao2,....,DC=edu)
(pf::Authentication::Source::LDAPSource::match_in_subclass)
The way I've this set up is with the following sources (snipped from
authentication.conf):
[null]
description=Null Source
type=Null
email_required=no
[sponsor-email]
description=Calvin email sponsor
type=SponsorEmail
create_local_account=no
allow_localdomain=yes
[sponsor-email rule catchall]
description=
match=all
action0=set_role=guest
action1=set_access_duration=21D
[Sponsor-AD2]
description=AD Sponsorship
password=xxxxxxxxxxxx
scope=sub
binddn=cn=$ldapcheck,....dc=edu
basedn=ou=CalvinUsers,...dc=edu
usernameattribute=sAMAccountName
connection_timeout=15
stripped_user_name=no
encryption=none
port=389
type=AD
host=.......
[Sponsor-AD2 rule AuthorizedSponsors]
description=
match=any
action0=set_role=guest
action1=set_access_duration=21D
condition0=memberOf,equals,cn=Staff...dc=edu
[Sponsor-AD2 rule catchall]
description=
match=all
action0=set_role=default
action1=set_access_duration=1h
Am I missing something obvious? I feel like I'm close, but not quite there,
like I'm missing a way to link the two sources together.
Many thanks,
Gary
________________________________
From: Fabrice DURAND <[email protected]>
Sent: Friday, June 26, 2015 11:46 AM
To: [email protected]
Subject: Re: [PacketFence-users] Sponsor Login via Email
Hello Gary,
yes this feature is still there and you just have to add Sponsor as an
authentication source on the portal profile.
BTW you have to define user as sponsor in packetfence (Mark as sponsor).
Regards
Fabrice
Le 2015-06-26 10:05, Gary Ossewaarde a écrit :
In PF 3.5, we had email sponsorship set up to send an email with a link for the
sponsor to log in. Is this built in to PF 5? The person who implemented it
originally isn't here anymore and I'm not sure if it was a built-in feature or
something he hacked in.
Thanks,
Gary
------------------------------------------------------------------------------
Monitor 25 network devices or servers for free with OpManager!
OpManager is web-based network management software that monitors
network devices and physical & virtual servers, alerts via email & sms
for fault. Monitor 25 devices for free with no restriction. Download now
http://ad.doubleclick.net/ddm/clk/292181274;119417398;o
_______________________________________________
PacketFence-users mailing list
[email protected]<mailto:[email protected]>
https://lists.sourceforge.net/lists/listinfo/packetfence-users
--
Fabrice Durand
[email protected]<mailto:[email protected]> :: +1.514.447.4918 (x135) ::
www.inverse.ca<http://www.inverse.ca>
Inverse inc. :: Leaders behind SOGo (http://www.sogo.nu) and PacketFence
(http://packetfence.org)
------------------------------------------------------------------------------
Don't Limit Your Business. Reach for the Cloud.
GigeNET's Cloud Solutions provide you with the tools and support that
you need to offload your IT needs and focus on growing your business.
Configured For All Businesses. Start Your Cloud Today.
https://www.gigenetcloud.com/
_______________________________________________
PacketFence-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/packetfence-users
