Looks like I need to get AD/Radius working first. I have an AD controller set up vi samba4. I can connect to the server from the command line.

net ads join -U Administrator
Enter Administrator's password:
Using short domain name -- LYDIAN
Joined 'COEUS' to dns domain 'lydian.org'

However, when I attempt to add a domain via the admin interface it fails. I don't see any output in logs to provide any hint regarding failure. Are there any guides for configuring AD/Radius? Any suggestions as to a method to get any further debug details on failure?

Thanks

On 11/29/2016 06:52 PM, Durand fabrice wrote:

Hello Walt,

it looks that the switch support 802.1x and mac-auth (http://www.tp-link.com/en/products/details/cat-39_TL-SG3210.html#specifications) so imo you can try to support it with radius.

So what you can do is to try your switch with the cisco 2960 module to see all the request/answer and you will have to find a way to reevaluate the access of the device (maybe ssh).

Let me know if you need help, i am also available on the #packetfence irc channel.

Regards

Fabrice



Le 2016-11-27 à 23:53, Walt Baldwin a écrit :

bump...



-------- Forwarded Message --------
Subject:        TP-Link Switch Support
Date:   Sat, 26 Nov 2016 20:00:43 -0500
From:   nspacketfe...@lydian.org
To:     packetfence-de...@lists.sourceforge.net



I'm attempting to get a TP-Link 3210 and 5428 working with PacketFence.
I have created my switch object and have successfully configured a
switch in PacketFence.

Nov 26 19:37:37 pfcmd.pl(19617) DEBUG: creating new 
pf::Switch::TPLink::TL_SG3210 object (pf::SwitchFactory::instantiate)


However, parseTrap() doesn't seem to be getting called.  (nor do any of
the new class methods)

I also don't see any output in packetfence.log nor snmptrapd.log.

I have confirmed that the pf box is receiving the traps.

tcpdump -i enp5s0f0 -nnev -s0 udp port 162

tcpdump: listening on enp5s0f0, link-type EN10MB (Ethernet), capture size 65535 
byte

      192.168.14.249.161 > 192.168.14.60.162:  { SNMPv2c C=admin { V2Trap(168) R=5053  
.1.3.6.1.2.1.1.3.0=7745881 .1.3.6.1.6.3.1.1.4.1.0=.1.3.6.1.4.1.11863.1.1.5.2.3.4.1 
.1.3.6.1.4.1.11863.1.1.5.2.3.2.2.1.3.184.39.235.49.69.89.102=8 .1.3.6.1.4.1.11863="The 
port 8 learns a dynamic address b8:27:eb:31:45:59, vid 102." } }

19:43:47.171926 f4:f2:6d:61:7d:0c > 00:25:90:c7:3c:e4, ethertype IPv4 (0x0800), 
length 190: (tos 0x0, ttl 64, id 26741, offset 0, flags [none], proto UDP (17), 
length 176)

      192.168.14.249.161 > 192.168.14.60.162:  { SNMPv2c C=admin { V2Trap(132) R=5054  
.1.3.6.1.2.1.1.3.0=7760595 .1.3.6.1.6.3.1.1.4.1.0=.1.3.6.1.6.3.1.1.5.3 
.1.3.6.1.2.1.2.2.1.1.3=3 .1.3.6.1.2.1.2.2.1.7.3=1 .1.3.6.1.2.1.2.2.1.8.3=2 
.1.3.6.1.4.1.11863="Port3 linkDown" } }

19:43:51.578752 f4:f2:6d:61:7d:0c > 00:25:90:c7:3c:e4, ethertype IPv4 (0x0800), 
length 188: (tos 0x0, ttl 64, id 26742, offset 0, flags [none], proto UDP (17), 
length 174)

      192.168.14.249.161 > 192.168.14.60.162:  { SNMPv2c C=admin { V2Trap(130) R=5055  
.1.3.6.1.2.1.1.3.0=7761036 .1.3.6.1.6.3.1.1.4.1.0=.1.3.6.1.6.3.1.1.5.4 
.1.3.6.1.2.1.2.2.1.1.3=3 .1.3.6.1.2.1.2.2.1.7.3=1 .1.3.6.1.2.1.2.2.1.8.3=1 
.1.3.6.1.4.1.11863="Port3 linkUp" } }

19:44:07.932334 f4:f2:6d:61:7d:0c > 00:25:90:c7:3c:e4, ethertype IPv4 (0x0800), 
length 227: (tos 0x0, ttl 64, id 26743, offset 0, flags [none], proto UDP (17), 
length 213)

      192.168.14.249.161 > 192.168.14.60.162:  { SNMPv2c C=admin { V2Trap(169) R=5056  
.1.3.6.1.2.1.1.3.0=7762671 .1.3.6.1.6.3.1.1.4.1.0=.1.3.6.1.4.1.11863.1.1.5.2.3.4.1 
.1.3.6.1.4.1.11863.1.1.5.2.3.2.2.1.3.172.207.92.67.199.19.102=8 .1.3.6.1.4.1.11863="The 
port 8 learns a dynamic address ac:cf:5c:43:c7:13, vid 102." } }



Adding to the mystery, PacketFence is discovering the new macs on the
switch as they are listed in the nodes page on the web interface.

Any push in the right direction would be appreciated.

Thanks




------------------------------------------------------------------------------


_______________________________________________
PacketFence-users mailing list
PacketFence-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/packetfence-users



------------------------------------------------------------------------------


_______________________________________________
PacketFence-users mailing list
PacketFence-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/packetfence-users


------------------------------------------------------------------------------
_______________________________________________
PacketFence-users mailing list
PacketFence-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/packetfence-users

Reply via email to