Hi Fabrice,
Many thanks for replying - Last 50 lines of packetfence.log below. Looks like
something is not defined, I will look deeper in to it but any advice welcome.;
[root@localhost ~]# tail /usr/local/pf/logs/packetfence.log -n 50
Jan 15 08:25:00 httpd.portal(21372) INFO: [ mac:60:57:18:94:4d:a0
ip:192.168.120.227 ] Static User-Agent lookup data initialized
(pf::useragent::_init)
Jan 15 08:25:01 httpd.webservices(2022) INFO: oldmac (f0:db:f8:7b:ae:a0) and
newmac (34:c0:59:ac:23:74) are different for 192.168.215.59 - closing iplog
entry (pf::api::update_iplog)
Jan 15 08:25:02 httpd.portal(21372) INFO: [ mac:60:57:18:94:4d:a0
ip:192.168.120.227 ] [60:57:18:94:4d:a0] redirected to authentication page on
default portal
(captiveportal::PacketFence::Controller::CaptivePortal::checkIfNeedsToRegister)
Jan 15 08:25:09 httpd.webservices(2022) INFO: oldip (192.168.212.62) and newip
(192.168.214.99) are different for a4:5e:60:82:f3:58 - closing iplog entry
(pf::api::update_iplog)
Jan 15 08:25:12 httpd.webservices(2022) INFO: Instantiate profile default
(pf::Portal::ProfileFactory::instantiate)
Jan 15 08:25:27 httpd.webservices(2022) INFO: Instantiate profile default
(pf::Portal::ProfileFactory::instantiate)
Jan 15 08:25:42 httpd.webservices(2022) INFO: Instantiate profile default
(pf::Portal::ProfileFactory::instantiate)
Jan 15 08:25:56 httpd.webservices(2022) INFO: Instantiate profile default
(pf::Portal::ProfileFactory::instantiate)
Jan 15 08:25:57 httpd.portal(23187) INFO: [ mac:[undef] ip:[undef] ] Memory
configuration is not valid anymore for key interfaces::management_network in
local cached_hash (pfconfig::cached::is_valid)
Jan 15 08:25:57 httpd.portal(23187) INFO: [ mac:[undef] ip:[undef] ]
Instantiate profile default (pf::Portal::ProfileFactory::instantiate)
Jan 15 08:25:57 httpd.portal(23187) INFO: [ mac:60:57:18:94:4d:a0
ip:192.168.120.227 ] Instantiate profile default
(pf::Portal::ProfileFactory::instantiate)
Jan 15 08:25:57 httpd.portal(23187) INFO: [ mac:60:57:18:94:4d:a0
ip:192.168.120.227 ] Memory configuration is not valid anymore for key
interfaces::internal_nets in local cached_hash (pfconfig::cached::is_valid)
Jan 15 08:25:57 httpd.portal(23187) WARN: [ mac:60:57:18:94:4d:a0
ip:192.168.120.227 ] [OS_Staff] No entries found (0) with filter
(sAMAccountName=smith.f) from OU=Oundle,DC=oundleschool,DC=local on
192.168.100.42:389 (pf::Authentication::Source::LDAPSource::authenticate)
Jan 15 08:25:57 httpd.portal(23187) INFO: [ mac:60:57:18:94:4d:a0
ip:192.168.120.227 ] [OS_Pupils] Authentication successful for smith.f
(pf::Authentication::Source::LDAPSource::authenticate)
Jan 15 08:25:57 httpd.portal(23187) INFO: [ mac:60:57:18:94:4d:a0
ip:192.168.120.227 ] Authentication successful for smith.f in source OS_Pupils
(AD) (pf::authentication::authenticate)
Jan 15 08:25:57 httpd.portal(23187) INFO: [ mac:60:57:18:94:4d:a0
ip:192.168.120.227 ] Successfully authenticated
smith.f/192.168.120.227/60:57:18:94:4d:a0
(captiveportal::PacketFence::Controller::Authenticate::authenticationLogin)
Jan 15 08:25:57 httpd.portal(23187) WARN: [ mac:60:57:18:94:4d:a0
ip:192.168.120.227 ] Calling match with empty/invalid rule class. Defaulting to
'authentication' (pf::authentication::match)
Jan 15 08:25:57 httpd.portal(23187) INFO: [ mac:60:57:18:94:4d:a0
ip:192.168.120.227 ] [OS_Pupils Pupils_Default] Found a match (CN=Fred
Smith,OU=2020OU,OU=Pupils,OU=OS,DC=oundleschool,DC=local)
(pf::Authentication::Source::LDAPSource::match_in_subclass)
Jan 15 08:25:57 httpd.portal(23187) INFO: [ mac:60:57:18:94:4d:a0
ip:192.168.120.227 ] Matched rule (Pupils_Default) in source OS_Pupils,
returning actions. (pf::Authentication::Source::match)
Jan 15 08:25:58 httpd.portal(23187) INFO: [ mac:60:57:18:94:4d:a0
ip:192.168.120.227 ] Instantiate profile default
(pf::Portal::ProfileFactory::instantiate)
Jan 15 08:25:58 httpd.portal(23187) INFO: [ mac:60:57:18:94:4d:a0
ip:192.168.120.227 ] [60:57:18:94:4d:a0] re-evaluating access (manage_register
called) (pf::enforcement::reevaluate_access)
Jan 15 08:25:58 httpd.portal(23187) INFO: [ mac:60:57:18:94:4d:a0
ip:192.168.120.227 ] [60:57:18:94:4d:a0] is currentlog connected at
(192.168.214.9) ifIndex 0 in VLAN 120
(pf::enforcement::_should_we_reassign_vlan)
Jan 15 08:25:58 httpd.portal(23187) INFO: [ mac:60:57:18:94:4d:a0
ip:192.168.120.227 ] Instantiate profile default
(pf::Portal::ProfileFactory::instantiate)
Jan 15 08:25:58 httpd.portal(23187) INFO: [ mac:60:57:18:94:4d:a0
ip:192.168.120.227 ] [60:57:18:94:4d:a0] Connection type is WIRELESS_MAC_AUTH.
Getting role from node_info (pf::vlan::getNormalVlan)
Jan 15 08:25:58 httpd.portal(23187) INFO: [ mac:60:57:18:94:4d:a0
ip:192.168.120.227 ] [60:57:18:94:4d:a0] Username was defined "605718944da0" -
returning role 'OS_Pupils' (pf::vlan::getNormalVlan)
Jan 15 08:25:58 httpd.portal(23187) WARN: [ mac:60:57:18:94:4d:a0
ip:192.168.120.227 ] No parameter OS_PupilsVlan found in conf/switches.conf for
the switch 192.168.214.9 (pf::Switch::getVlanByName)
Jan 15 08:25:58 httpd.portal(23187) WARN: [ mac:60:57:18:94:4d:a0
ip:192.168.120.227 ] [60:57:18:94:4d:a0] Resolved VLAN for node is not properly
defined: Replacing with macDetectionVlan (pf::vlan::fetchVlanForNode)
Jan 15 08:25:58 httpd.portal(23187) INFO: [ mac:60:57:18:94:4d:a0
ip:192.168.120.227 ] [60:57:18:94:4d:a0] PID: "smith.f", Status: reg Returned
VLAN: 4, Role: OS_Pupils (pf::vlan::fetchVlanForNode)
Jan 15 08:25:58 httpd.portal(23187) INFO: [ mac:60:57:18:94:4d:a0
ip:192.168.120.227 ] [60:57:18:94:4d:a0] VLAN reassignment required (current
VLAN = 120 but should be in VLAN 4) (pf::enforcement::_should_we_reassign_vlan)
Jan 15 08:25:58 httpd.portal(23187) INFO: [ mac:60:57:18:94:4d:a0
ip:192.168.120.227 ] [60:57:18:94:4d:a0] switch port is (192.168.214.9) ifIndex
unknown connection type: WiFi MAC Auth (pf::enforcement::_vlan_reevaluation)
Jan 15 08:25:58 httpd.portal(23185) INFO: [ mac:[undef] ip:[undef] ] Memory
configuration is not valid anymore for key interfaces::management_network in
local cached_hash (pfconfig::cached::is_valid)
Jan 15 08:25:58 httpd.portal(23185) INFO: [ mac:[undef] ip:[undef] ]
Instantiate profile default (pf::Portal::ProfileFactory::instantiate)
Jan 15 08:25:58 httpd.portal(23185) INFO: [ mac:60:57:18:94:4d:a0
ip:192.168.120.227 ] Instantiate profile default
(pf::Portal::ProfileFactory::instantiate)
Jan 15 08:25:58 httpd.portal(23185) INFO: [ mac:60:57:18:94:4d:a0
ip:192.168.120.227 ] Memory configuration is not valid anymore for key
interfaces::internal_nets in local cached_hash (pfconfig::cached::is_valid)
Jan 15 08:25:59 httpd.webservices(2022) INFO: [60:57:18:94:4d:a0]
DesAssociating mac on switch (192.168.214.9) (pf::api::desAssociate)
Jan 15 08:25:59 httpd.webservices(2022) INFO: [60:57:18:94:4d:a0]
deauthenticating (pf::Switch::radiusDisconnect)
Jan 15 08:25:59 httpd.webservices(2022) INFO: Memory configuration is not valid
anymore for key interfaces::management_network in local cached_hash
(pfconfig::cached::is_valid)
Jan 15 08:25:59 httpd.aaa(1986) INFO: [60:57:18:94:4d:a0] handling radius autz
request: from switch_ip => (192.168.214.9), connection_type =>
Wireless-802.11-NoEAP,switch_mac => (40:18:b1:83:1d:a8), mac =>
[60:57:18:94:4d:a0], port => 0, username => "605718944da0"
(pf::radius::authorize)
Jan 15 08:25:59 httpd.aaa(1986) INFO: Instantiate profile default
(pf::Portal::ProfileFactory::instantiate)
Jan 15 08:25:59 httpd.aaa(1986) INFO: [60:57:18:94:4d:a0] Connection type is
WIRELESS_MAC_AUTH. Getting role from node_info (pf::vlan::getNormalVlan)
Jan 15 08:25:59 httpd.aaa(1986) INFO: [60:57:18:94:4d:a0] Username was defined
"605718944da0" - returning role 'OS_Pupils' (pf::vlan::getNormalVlan)
Jan 15 08:25:59 httpd.aaa(1986) WARN: No parameter OS_PupilsVlan found in
conf/switches.conf for the switch 192.168.214.9 (pf::Switch::getVlanByName)
Jan 15 08:25:59 httpd.aaa(1986) WARN: [60:57:18:94:4d:a0] Resolved VLAN for
node is not properly defined: Replacing with macDetectionVlan
(pf::vlan::fetchVlanForNode)
Jan 15 08:25:59 httpd.aaa(1986) INFO: [60:57:18:94:4d:a0] PID: "smith.f",
Status: reg Returned VLAN: 4, Role: OS_Pupils (pf::vlan::fetchVlanForNode)
Jan 15 08:25:59 httpd.aaa(1986) WARN: (192.168.214.9) No parameter
OS_PupilsRole found in conf/switches.conf (pf::Switch::getRoleByName)
Jan 15 08:25:59 httpd.aaa(1986) INFO: [60:57:18:94:4d:a0] Returning ACCEPT with
VLAN: 4 (pf::Switch::AeroHIVE::returnRadiusAccessAccept)
Jan 15 08:26:06 httpd.webservices(2022) INFO: oldip (192.168.212.166) and newip
(192.168.224.120) are different for 00:cd:fe:d2:46:ee - closing iplog entry
(pf::api::update_iplog)
Jan 15 08:26:16 httpd.webservices(2022) INFO: Memory configuration is not valid
anymore for key config::Pf in local cached_hash (pfconfig::cached::is_valid)
Jan 15 08:26:17 httpd.webservices(2022) INFO: oldmac (f0:db:f8:7c:56:2e) and
newmac (04:4b:ed:2e:d0:94) are different for 192.168.214.47 - closing iplog
entry (pf::api::update_iplog)
Jan 15 08:26:20 httpd.webservices(2022) INFO: oldip (192.168.214.108) and newip
(192.168.212.100) are different for 18:3a:2d:8e:24:fe - closing iplog entry
(pf::api::update_iplog)
Regards
Darren
From: Durand fabrice [mailto:[email protected]]
Sent: 15 January 2016 01:08
To: [email protected]
Subject: Re: [PacketFence-users] PacketFence setup with Aerohive
Hello Morgan,
what is missing is probably the deauth, can you paste the packetfence.log when
you login ?
Regards
Fabrice
Le 2016-01-14 12:06, Morgan, Darren a écrit :
Hi,
I'm trying to set up our PacketFence system with our Wi-Fi. I have managed to
find some information online
(https://community.aerohive.com/aerohive/topics/aerohive-integration-with-packetfence
)
I can get Wi-Fi laptops to connect to the open SSID and they can reach the
PacketFence Authentication portal on the registration VLAN, but once
authenticated it does not seem to move the device to the Authenticated VLAN.
Does anyone have any experience with connecting PF to Aerohive through the
online hivemanager? Has anyone got any tips for fault-finding this sort of
issue?
Kind regards
Darren Morgan
Systems Manager
Oundle School
This email is sent from either Oundle School or Laxton Junior School for The
Corporation of Oundle School and is intended only for the addressee named
above. The Corporation of Oundle School is a Charity incorporated under Royal
Charter RC000396 and charity number 309921.
www.oundleschool.org.uk<http://www.oundleschool.org.uk>
________________________________
Scanned by iCritical.
------------------------------------------------------------------------------
Site24x7 APM Insight: Get Deep Visibility into Application Performance
APM + Mobile APM + RUM: Monitor 3 App instances at just $35/Month
Monitor end-to-end web transactions and take corrective actions now
Troubleshoot faster and improve end-user experience. Signup Now!
http://pubads.g.doubleclick.net/gampad/clk?id=267308311&iu=/4140
_______________________________________________
PacketFence-users mailing list
[email protected]<mailto:[email protected]>
https://lists.sourceforge.net/lists/listinfo/packetfence-users
------------------------------------------------------------------------------
Site24x7 APM Insight: Get Deep Visibility into Application Performance
APM + Mobile APM + RUM: Monitor 3 App instances at just $35/Month
Monitor end-to-end web transactions and take corrective actions now
Troubleshoot faster and improve end-user experience. Signup Now!
http://pubads.g.doubleclick.net/gampad/clk?id=267308311&iu=/4140
_______________________________________________
PacketFence-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/packetfence-users
