Hi Fabrice,
Did you see anything in the code?
OCSP now is working ok, thanks a lot.
Yes I am sending also the accounting info to the packetfence server. If i
send the the node and then "Location" I can see the information of
associated access point, but the status is offline.
Greetings.
> ------------------------------
>
> Message: 2
> Date: Tue, 20 Jun 2017 19:16:36 -0400
> From: Durand fabrice <[email protected]>
> To: [email protected]
> Subject: Re: [PacketFence-users] packetfence-pki EAP-tls users and
> certificate management
> Message-ID: <[email protected]>
> Content-Type: text/plain; charset="utf-8"; Format="flowed"
>
> Hello Rokkhan,
>
> i need to check in the code why you have this error when the certificate
> already exist.
>
> Also the port for ocsp is 9292.
>
> Last thing, to have online/offline status you need to have the radius
> accounting enable.
>
> Regards
>
> Fabrice
>
>
>
> Le 2017-06-19 ? 14:30, Rokkhan via PacketFence-users a ?crit :
> > Hi,
> >
> > I am trying to configure a wireless network using pakcetfence-pki and
> > user certificates.
> >
> > I have configured a role limited to 3 devices per user and configured
> > packetfence-pki to generate user certifcates using ldap's user id
> > instead of device mac adress.
> >
> > The issue is that when the user generates the certificate for the
> > first device I get an error generating certificate that I think is
> > related to that an user certifcate previously exists, because if i
> > remove the previously generated certificate i do not get any error.
> >
> > what am i doing wrong? How can i apply the 3 device limit per user
> > using eap-tls?
> >
> > When I connect to SSID using the generated certificate user is marked
> > as login ok through radius but I get ocsp error. What port do have to
> > configure in eap.conf module? 9191 9292 or 9393 ?
> >
> > Once the users are logged in the eap-tls ssid through radius server
> > the packfence server does not show status of the device. I mean, if i
> > filter to "online nodes" this devices are not shown.
> >
> > Greetings.
> >
> >
> > ------------------------------------------------------------
> ------------------
> > Check out the vibrant tech community on one of the world's most
> > engaging tech sites, Slashdot.org! http://sdm.link/slashdot
> >
> >
> > _______________________________________________
> > PacketFence-users mailing list
> > [email protected]
> > https://lists.sourceforge.net/lists/listinfo/packetfence-users
>
>
------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdot.org! http://sdm.link/slashdot
_______________________________________________
PacketFence-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/packetfence-users
