Hi all,
Since we've solved our problem by ourselves, here I post it in case someone
else meet the same issue.
For question 1, for "Unable to perform RADIUS Disconnect-Request.
Disconnect-NAK received with Error-Cause: Session-Context-Not-Found" issue, as
we are sure our issue was caused by the wrong acct-session-id pf got when
sending radius-disconnect request, we modified the
/usr/local/pf/lib/pf/Switch/Aruba.pm, comment out line 491, exclude the
acct-session-id from radius disconnect request when disconnecting a device, and
it works well now.
For question 2, we added a new realm with our custom domain and custom AD
source as the basic guide required. Besides, we changed the NULL realm's
configuration, setting the NULL realm with our custom domain and custom AD
source. And then chose local source for LOCAL realm. This way, when I connect
the wifi with my iphone, I don't have to fill the full domain prefix in the
username and PF can match the correct realm and authenticate the device with
our AD. Only one change, when we login to GUI page, we should fill the admin
name as "LOCAL\admin", this way it'll match the local source for authentication.
Thank you.
------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdot.org! http://sdm.link/slashdot
_______________________________________________
PacketFence-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/packetfence-users
