Hi everybody!
First the current situation so far:
We installed a test-network, where the packetfence-server is reachable
with an ip 10.5.1.4 (type management)
and set 'RADIUS enforcement' as chosen method.
Next we installed a Mikrotik-Switch (POE) with 4 VLANS (771-774) and
attached an Aruba-AP to a trunk port
with the mentioned VLANs. The default VLAN is 771 and the AP gets an IP
and can connect to the pf-server.
Now we created an authentication-source to our AD and created a
switch-template for the AP. There are two
roles based on AD-group-membership: teachers (VID 772) and pupils (VID
773) - set in the switch profile under
'Role mapping by VLAN ID'.
As far as it was possible, we set up the AP according to the packetfence
device configuration guide, because
the guide refers to ArubaOS 5.x, but we are already at 8.6.0.2.
Now we are stuck: everybody can login with an ad-username (and pasword),
but the user doesn't get
transferred to the correct vlan and stays in the default. In 'Auditing'
I can see at 'Node Information' the
Role N/A and there is no Tunnel-Private-Group-ID in the RADIUS Reply.
Can somebody enlighten me on what to check or what to set / how to debug?
kind regards
Chris
_______________________________________________
PacketFence-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/packetfence-users
