With a disclaimer that our PacketFence install is bordering on grossly obsolete, I'm sending a heads-up for anyone still using Meru/Fortinet wireless equipment.
Their controller firmware version 8.4.3 has either a bug or feature where they are no longer sending the RADIUS Calling-Station-ID to PF. This was observed on an open SSID, using MAC authentication. I don't know if 802.1x authentication is also missing the Calling-Station-ID. At least on our ancient version of PF, RADIUS returns no VLAN...so the controller uses whatever the default VLAN is configured for. Upgrading from 8.4.2 to 8.4.3 resulted in two days of head-scratching before raddebug revealed the cause of VLANs not switching. The release notes supposedly do not mention any RADIUS changes whatsoever. However, doing a stare-and-compare between the web GUI in 8.4.2 and 8.4.3, the pick list for RADIUS parameter Called-Station-ID tripled in available formats to send. We have an escalated ticket open with Fortinet support, and will report back any news... -Arthur ------------------------------------------------------------------------- Arthur Emerson III Email: [email protected]<mailto:[email protected]> Network Administrator InterNIC: AE81 Mount Saint Mary College MaBell: (845) 561-0800 Ext. 3109 330 Powell Ave. Fax: (845) 562-6762 Newburgh, NY 12550 SneakerNet: Aquinas Hall Room 008-A
_______________________________________________ PacketFence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users
