Hello, I need to place a wireless device in a specific role based on the device Mac Address(ex. 00:11:22:33:44:55) and username(sAMAccountName=radiology). Currently, I'm able to authenticate the device using a username but I can't get Packetfence to recognize the Mac address and the device ends up using BYOD rule rather than Radiology rule. I am using Vlan Filter to auto register devices if that makes a difference. Does this configuration look correct?
[ad-user] description=Active Directory user account password=**************** scope=sub binddn=CN=User1,OU=Users,DC=example,DC=net basedn=DC=example,DC=net email_attribute=mail usernameattribute=sAMAccountName connection_timeout=5 stripped_user_name=yes encryption=none dynamic_routing_module=AuthModule port=389 type=AD host=192.168.100.100 [ad-user rule Radiology] description=Devices NOT able to use computer authentication class=authentication match=any action0=set_role=Radiology action1=set_access_duration=5D condition0=sAMAccountName,equals,radiology condition1=mac,equals,00:11:22:33:44:55 [ad-user rule BYOD] description=Devices NOT maintained by IT get assigned to Guest role class=authentication match=any action0=set_role=guest action1=set_access_duration=1D condition0=SSID,equals,Private SSID
------------------------------------------------------------------------------
_______________________________________________ PacketFence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users
