Hello Joel, Memberof is a LDAP attribute, it needs to be matched against a distinguishedName from a group object from the AD.
Thanks, Ludovic Zammit [email protected] <mailto:[email protected]> :: +1.514.447.4918 (x145) :: www.inverse.ca <https://www.inverse.ca/> Inverse inc. :: Leaders behind SOGo (http://www.sogo.nu <http://www.sogo.nu/>) and PacketFence (http://packetfence.org <http://packetfence.org/>) > On Mar 13, 2021, at 7:53 PM, Joel Rodriguez via PacketFence-users > <[email protected]> wrote: > > Hi everyone, > > Hoping for some help with this error. I tried to look in the mailing lists > but could not find an exact match to my issue. When trying to authenticate on > wireless with 8021x the authentication fails with the error, the only way for > devices to authenticate successfully is by manually registering the devices > before connecting (it seems auto registration is not working for me). Also I > created an authentication source with the condition the user has to be in a > specific ad group however even if the users are not in that group they are > authenticated. Thanks in advance! > > RADIUS Reply > EAP-Message = 0x03090004 > Message-Authenticator = 0x00000000000000000000000000000000 > User-Name = "[email protected] <mailto:[email protected]>" > Reply-Message = "no role computed by any sources" > > Example of authentication rule > <image.png> > _______________________________________________ > PacketFence-users mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/packetfence-users
_______________________________________________ PacketFence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users
