Sorry to disturb, i found the reason. In auth source in auth rule, it was necessary to choose the operator not "is" but "is member of"
---------- Forwarded message --------- От: Alexander <leonoff.sany...@gmail.com> Date: пн, 7 нояб. 2022 г. в 13:01 Subject: roles for memberoff 802.1x To: <packetfence-users@lists.sourceforge.net> Hello my friends, i need help... I am using ldap and I want to distribute roles depending on the ldap group (memberof). I'm in authetication source ldap create "Authentication Rules" created 2 rules: 1) assign Role "Admins" if memberof cn=admins,..... 2) Assign Role "User" if memberof cn=users,..... Also, my hosts are automatically registered. The problem is that, for example, if I log in with an 802.1x admin account (the device enters the admin vlan). But if I log out and log in under a regular account (users), then again I get into the admin VLAN. Apparently because the device is registered as Admins. In the logs I saw this: Role has already been computed and we don't want to recompute it. Getting role from node_info Tell me how to overcome this and check memberoff every time or re-register the device every time
_______________________________________________ PacketFence-users mailing list PacketFence-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/packetfence-users
