I run a 5508 and 4404 with Vlan management and radius authentication. I have no problems. I am currently running 8.0.120.0 on the 5508. Please describe your setup.
Config on the 5508 should be Define all the vlans that you want to use in the interface section of the controller Make sure that your iphelper for your registration network is the PF server (this is done on the core switch for my site) On the ssid you need to set security for layer 2 to none and Mac Filtering needs to be checked. For aaa servers set the packetfence server as auth and accounting. Set the order for auth to radius only on the ssid. In Advanced make sure to allow aaa override For radius I use "AP eth mac address:ssid" and delimiter is Colon On the PF side of things you need to make sure that you are defining the switch vlans-ids and not switch roles for your (switches/controller) Then make sure that your radius passphrase is not longer than 15 characters as this has caused me issues in the past. I believe I am running PF version 4.7 Thanks Eric -----Original Message----- From: Jason Skretta [mailto:[email protected]] Sent: Tuesday, August 04, 2015 12:29 PM To: [email protected] Subject: [PacketFence-users] Device connection problems with Cisco 5508 Hi all, I'm having some difficulty integrating a Cisco 5508 with PacketFence. It's running 8.0.120.0 WLC software. The main problem is when a device is not registered, then it is unable to connect to the WLAN through the 5508. A registered device is able to connect to the WLAN just fine. On our production equipment, a non-registered device is able to connect to the WLAN just fine. After a non-registered device gets connected, then we go through the registration process with no problems. I've been working with a Cisco engineer, and we tried changing several things. The Cisco engineer had decided that I need to make PacketFence not send the "Airespace / ACL-Name" attribute during the RADIUS exchange. I'm not certain where to make this change. Is someone able to offer some guidance on how to make this kind of change to PacketFence? Thanks, Jason Skretta AmesLab Information Systems [email protected] 515-294-5090 ------------------------------------------------------------------------------ _______________________________________________ PacketFence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users ------------------------------------------------------------------------------ _______________________________________________ PacketFence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users
