I... AD2 was just in preparation after I deployed pf2. Several days later, ad2 was ready but I thought joining domain was just one time action since there were also a featrue named authentication source. So I nearly forget it until I reviewed the configuration after the network issue. We are planning to deploy pf2 again in office B recently(not find out the root cause yet). Really hope no more issue... God bless. Thank you all.
------------------ Original ------------------ From: Fabrice Durand <[email protected]> Date: ????,1?? 18,2018 22:04 To: Yan <[email protected]>, packetfence-users <[email protected]> Subject: Re: [PacketFence-users] Successfully passed 802.1x auth but nonetwork access Hello Yan, sorry for the delay. So why don't you joined pf2 to ad2 , i think it will be simpler and probably fix your issue. Regards Fabrice Le 2018-01-15 ?? 11:17, Yan a ??crit : Yes. They have the same domain/users but on different servers. Both of them can authenticate our all users. ------------------ Original ------------------ From: Fabrice Durand <[email protected]> Date: ????,1?? 15,2018 22:13 To: Yan <[email protected]>, packetfence-users <[email protected]> Subject: Re: [PacketFence-users] Successfully passed 802.1x auth but no network access Hello Yan, does AD1 and AD2 are the same ? (same domain/users ...) Regards Fabrice Le 2018-01-15 ?? 00:41, Yan a ??crit : Hi Durand, I installed a netdata in my pf server and not found any network issue yet(I'm learning to use it). But there is another case I'm not sure if it is related to the authentication issue. We have 2 PF servers, pf1 is in office A and pf2 is in office B. We also have 2 domain servers(for AD and DNS) and AD1 is in office A and AD2 is in office B. In configuration--Policy and access control--Domains--Active Directory Domains menu of both PF servers, I added and joined the same domain AD1 (domain in office A). But in Configuration--Policy and access control--Authentication Sources menu, I add domain AD1 to pf1, and AD2 to pf2. And for the connection profile, I choose AD1 as authentication source on pf1, and choose AD2 as authentication source on pf2. I don't know if I clearly describe it, I draw a picture to make is more clear. Would this cause the previous strange issue ? -- Fabrice [email protected] :: +1.514.447.4918 (x135) :: www.inverse.caInverse inc. :: Leaders behind SOGo (http://www.sogo.nu) and PacketFence (http://packetfence.org) -- Fabrice [email protected] :: +1.514.447.4918 (x135) :: www.inverse.caInverse inc. :: Leaders behind SOGo (http://www.sogo.nu) and PacketFence (http://packetfence.org)
[email protected]
Description: Binary data
------------------------------------------------------------------------------ Check out the vibrant tech community on one of the world's most engaging tech sites, Slashdot.org! http://sdm.link/slashdot
_______________________________________________ PacketFence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users
