Just getting started with PacketFence and am struggling with something. So I'm using a Cisco SG300 as my test switch, and it does both 802.1x and MAC address authentication (MAB).
I'm finding that once I get authenticated using 802.1x credentials I can then pop around to other switch ports and get through without needing to provide credentials again (I assume because the MAC address is authenticated?). This is fine, however when I set the device to unauthorized, I don't receive a prompt for username/password again. I believe what happens is the MAC gets sent first, PacketFence then sets the request as Accept, but unregistered so sends it to the appropriate VLAN, and on the switch the state is Authenticated (as PacketFence technically authenticated it?). Not sure if this makes sense. Ideally a device would do 802.1x by default, then fall back to MAB if needed. -- *Stuart Gendron* IT Support Specialist
_______________________________________________ PacketFence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users
