Hey List, I am experiencing a weird behavior by packetfence recently. I authenticate my device through 802.1x and everything is fine but then there is always the violation 1300003 triggered. Usually this happens when a device is detected parking but 1. it happens immediately after the 802.1x authentication und 2. i have device parking disabled -> i even disabled that violation
does anyone have an idea how to stop that violation ? Mar 28 08:09:46 PacketFence-ZEN packetfence_httpd.aaa: httpd.aaa(5327) INFO: [mac:50:7b:18:30:65:4f] Instantiate profile 8021X (pf::Connection::ProfileFactory::_from_profile) Mar 28 08:09:46 PacketFence-ZEN packetfence_httpd.aaa: httpd.aaa(5327) INFO: [mac:50:7b:18:30:65:4f] Found authentication source(s) : 'Certs-Source' for realm 'null' (pf::config::util::filter_authentication_sources) Mar 28 08:09:46 PacketFence-ZEN packetfence_httpd.aaa: httpd.aaa(5327) WARN: [mac:50:7b:18:30:65:4f] Calling match with empty/invalid rule class. Defaulting to 'authentication' (pf::authentication::match2) Mar 28 08:09:46 PacketFence-ZEN packetfence_httpd.aaa: httpd.aaa(5327) INFO: [mac:50:7b:18:30:65:4f] Using sources Certs-Source for matching (pf::authentication::match2) Mar 28 08:09:46 PacketFence-ZEN packetfence_httpd.aaa: httpd.aaa(5327) INFO: [mac:50:7b:18:30:65:4f] Matched rule (SetMyRole) in source Certs-Source, returning actions. (pf::Authentication::Source::match_rule) Mar 28 08:09:46 PacketFence-ZEN packetfence_httpd.aaa: httpd.aaa(5327) INFO: [mac:50:7b:18:30:65:4f] Matched rule (SetMyRole) in source Certs-Source, returning actions. (pf::Authentication::Source::match) Mar 28 08:09:46 PacketFence-ZEN packetfence_httpd.aaa: httpd.aaa(5327) INFO: [mac:50:7b:18:30:65:4f] Role has already been computed and we don't want to recompute it. Getting role from node_info (pf::role::getRegisteredRole) Mar 28 08:09:46 PacketFence-ZEN packetfence_httpd.aaa: httpd.aaa(5327) INFO: [mac:50:7b:18:30:65:4f] Username was defined "PC*****" - returning role 'MyRole' (pf::role::getRegisteredRole) Mar 28 08:09:46 PacketFence-ZEN packetfence_httpd.aaa: httpd.aaa(5327) INFO: [mac:50:7b:18:30:65:4f] PID: "PC*****", Status: reg Returned VLAN: (undefined), Role: MyRole (pf::role::fetchRoleForNode) Mar 28 08:09:46 PacketFence-ZEN packetfence_httpd.aaa: httpd.aaa(5327) INFO: [mac:50:7b:18:30:65:4f] (172.21.14.65) Added VLAN 1 to the returned RADIUS Access-Accept (pf::Switch::returnRadiusAccessAccept) Mar 28 08:09:46 PacketFence-ZEN packetfence_httpd.aaa: httpd.aaa(5327) INFO: [mac:50:7b:18:30:65:4f] violation 1300003 force-closed for 50:7b:18:30:65:4f (pf::violation::violation_force_close) Mar 28 08:09:46 PacketFence-ZEN packetfence_httpd.aaa: httpd.aaa(5327) INFO: [mac:50:7b:18:30:65:4f] Instantiate profile MacAuth (pf::Connection::ProfileFactory::_from_profile) Mar 28 08:09:46 PacketFence-ZEN packetfence_httpd.aaa: httpd.aaa(5327) INFO: [mac:50:7b:18:30:65:4f] handling radius autz request: from switch_ip => (172.21.14.65), connection_type => Ethernet-NoEAP,switch_mac => (b4:f9:d9:29:a9:e9), mac => [50:7b:18:30:65:4f], port => 23, username => "50:7b:18:30:65:4f" (pf::radius::authorize) best regards and thank you for your help
_______________________________________________ PacketFence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users
