Systems Engineer, Celina ISD
469-742-9113
https://www.celinaisd.com <https://www.celinaisd.com/>
On Fri, Mar 26, 2021 at 9:00 PM Durand fabrice via PacketFence-users
<mailto:packetfence-users@lists.sourceforge.net>> wrote:
Hello Joshua,
let's run that:
raddebug -
Hello Joshua,
let's run that:
raddebug -f /usr/local/pf/var/run/radiusd.sock -t 3600 -c '(
Calling-Station-Id =~ /78[-:]?4f[-:]?43[-:]?97[-:]?f5[-:]?fe/i )'
And paste the output.
Regards
Fabrice
Le 21-03-26 à 18 h 22, Joshua Wise via PacketFence-users a écrit :
RADIUS Reply is empty.
Hello Diego,
your PR is really appreciate !!
I did a quick check and i am not sure i can do something on my side to
fix the CLA-Bot since it's in your repo.
The 2 things i see are that
::match)
Thanks
Regards
Daniele
Il giorno mar 9 mar 2021 alle ore 03:00 Durand fabrice via
PacketFence-users <mailto:packetfence-users@lists.sourceforge.net>> ha scritto:
Hello Daniel,
what is the process doing all that queries ? (it's at the
beginning of the the lines y
ch/site/IS>
*De :*Robin Cortat
*Envoyé :* mardi, 9 mars 2021 07:15
*À :* 'packetfence-users@lists.sourceforge.net'
*Cc :* Durand fabrice
*Objet :* RE: [PacketFence-users] VLANs assignation for HP Procurve
2824 switch
Hello,
Theoretically, there are 2 VLANs on the switch.
I followed the Networ
Hello Enrico,
you can try that:
edit
https://github.com/inverse-inc/packetfence/blob/maintenance/8.3/lib/pf/factory/condition/violation.pm#L45
and replace equals by regex then you will be able to use a regex for the
oid.
Regards
Fabrice
Le 21-03-07 à 02 h 21, Enrico Becchetti via
Hello Daniel,
what is the process doing all that queries ? (it's at the beginning of
the the lines you pasted).
Thanks
Regards
Fabrice
Le 21-03-07 à 05 h 05, Daniele via PacketFence-users a écrit :
Hi all!,
I have encountered a problem regarding fingerbank with some PCs with
static IP
Hello Pavit,
do you have the logs on the packetfence side when you try to authenticate ?
Thanks
Regards
Fabrice
Le 21-03-08 à 09 h 36, Pavit Maddy a écrit :
Greetings to all
We have added new cisco9300 catalyst switches in our environment for
dot1x authentication using Packetfence. These
Hello Robin,
what is the configuration you applied on the switch ?
What have been done on the packetfence side ?
Do you have any logs ?
Regards
Fabrice
Le 21-03-08 à 10 h 15, Robin Cortat via PacketFence-users a écrit :
Hello,
I use an HP ProCurve 2824 switch, and the only thing I
---
*De: *"packetfence-users"
*À: *"packetfence-users"
*Cc: *"Durand fabrice"
*Envoyé: *Mercredi 17 Février 2021 03:42:02
*Objet: *Re: [PacketFence-users] No role computed by any sources
Hello Andrian,
can you share the packetfence.log file whe
Hello Andrian,
can you share the packetfence.log file when you try to connect ?
Regards
Fabrice
Le 21-02-16 à 11 h 12, Adrian Dessaigne via PacketFence-users a écrit :
Hi everyone,
I'm slowly integrating PacketFence on a new infrastrucutre. I've
configured everything as shown in the
for this method to not send the radius accept but
instead a radius Reject?
On Wed, Feb 10, 2021 at 7:47 PM Durand fabrice via PacketFence-users
<mailto:packetfence-users@lists.sourceforge.net>> wrote:
Hello Robert,
it's more a vlan filter that you h
Hello Baykal,
you can just disable MAB on the switch port.
Regards
Fabrice
Le 21-02-09 à 00 h 12, Baykal Torogeldi Uulu via PacketFence-users a écrit :
image.png
Hello!!!
I try to restrict access to company network for only domain computers.
Non domain device auth status shows accept after
Hello Robert,
it's more a vlan filter that you have to do.
[RejectUnauthorizedRoleMAB]
run_actions=enabled
status=enabled
top_op=and
description=RejectUnauthorizedRoleMAB
scopes=RegisteredRole
role=REJECT
condition=connection_type == "Ethernet-NoEAP" && !((node_info.category
== "gaming" ||
Hello Chuck,
is it a cluster of 3 ?
Because the line 313 refer to @ha_ints which is used for a cluster of 2
(old cluster config).
Did you defined ha interfaces in pf.conf ?
Regards
Fabrice
Le 21-01-04 à 09 h 14, Chuck Gentry via PacketFence-users a écrit :
Every since I have
btw you can try to add:
'Calling-Station-Id' => $mac,
here:
https://github.com/inverse-inc/packetfence/blob/devel/lib/pf/Switch/Mikrotik.pm#L230
Le 20-12-11 à 20 h 31, Durand fabrice via PacketFence-users a écrit :
The code needs to be updated:
https://forum.mikrotik.com/viewtopic.ph
The code needs to be updated:
https://forum.mikrotik.com/viewtopic.php?t=33063
Le 20-12-11 à 14 h 28, Enrique Gross via PacketFence-users a écrit :
Hi PF users! Hope you all doing well
Hi Fabrice,
I have read the mail Adrian sent you regarding COA and Mikrotik. I
have been using SSH to
a rapid7 scan directly in the file, the IP address
disappears in the gui
Thanks and regards, Daniele
Il giorno gio 10 dic 2020 alle ore 03:07 Durand fabrice via
PacketFence-users mailto:packetfence-users@lists.sourceforge.net>> ha scritto:
Hello Daniele,
Most of the time i am doing that with postfix directly (it help to see
errors when sending emails).
So you can install postfix, set relayhost = x.x.x.x and create a
sender_canonical to rewrite the sender.
Also the sender is supposed to be set in alerting.fromaddr
=X
But if I decide to have every individual AP added then I need to have
as many MAC based entries as I have all APs and all of them sharing
the section for Unifi controller IP ?
Eugene
*From:* Durand fabrice via PacketFence-users
*Sent:* Wednesday, December 09, 2020 5:45 PM
Hello Eugene,
the probable issue is because the switch is not defined on the
packetfence side. (18:e8:29:93:52:a8)
But you can add a switch range on pf (like 192.168.0.0/24 as switch id,
set the controller ip and set the http credential to connect to the api)
and there is pfcron task who
Hello Daniele,
can you post the scan.conf file ?
Regards
Fabrice
Le 20-12-09 à 14 h 35, Daniele via PacketFence-users a écrit :
Hi all, I am using the latest version of packetfence, 10.2.0, on
Centos 7.9. When I try to configure a new rapid7 scan engine, I get
the following two errors in
Hello Florian,
it looks that you have a provisioner configured on the connection
profile WLAN_EAP.
Can you remove it and retry ?
Regards
Fabrice
Le 20-12-09 à 03 h 52, Krug, Florian via PacketFence-users a écrit :
Dear Community,
I have a strange behaviour of Packetfence, and do not
There is still support for Centos 7 until 2024.
We also support Debian 9 (we have to go on Debian 10) and there is also
Rocky Linux announced.
Next months will tell us more.
Le 20-12-08 à 20 h 20, Christian McDonald via PacketFence-users a écrit :
value (pf::dal::db_execute)
And on the mikrotik side, I receive this error in the log:
Radius disconnect with no ip provided
Thanks!
On Mon, Dec 7, 2020 at 6:12 PM Durand fabrice via PacketFence-users
<mailto:packetfence-users@lists.sourceforge.net>> wrote:
Try that instead:
Hello Robin,
can you paste the config of the switch, switches.conf and pf.conf ?
(remove sensible info).
Regards
Fabrice
Le 20-12-08 à 09 h 50, Robin Cortat via PacketFence-users a écrit :
Hello,
I am following chapter 5 of the installation guide. I am using an HP
ProCurve 2824 switch,
Try that instead:
$logger->info("SSH connection to mikrotik access point with credentials:
username ".$self->{_cliUser}." password ", $self->{_cliPwd}");
Also why you don't use the RADIUS disconnect method ?
Le 20-12-07 à 19 h 10, Adrian D'Atri-Guiran via PacketFence-users a écrit :
Yes i know, i did the code for that.
Btw you can use any kind of ldap attributes.
Le 20-11-30 à 16 h 25, Eric Schubert a écrit :
Thanks, Fabrice. This worked perfectly.
Eric Schubert
*From:* Durand fabrice via
ches.conf for the switch 10.2.2.29
(pf::Switch::getVlanByName)
Nov 27 18:09:05 radius packetfence_httpd.aaa: httpd.aaa(1446) INFO:
[mac:5c:e0:c5:c1:d6:fd] Match rule DynamicVLAN
(pf::access_filter::radius::test)
On Thu, Nov 26, 2020 at 5:03 PM Durand fabrice wrote:
Hello Adrian,
Try that:
BuildFr
.2.2.59
(pf::Switch::getVlanByName)
INFO: [mac:5c:e0:c5:c1:d6:fd] Match rule DynamicVLAN
(pf::access_filter::radius::test)
On Wed, Nov 25, 2020 at 6:09 PM Durand fabrice wrote:
Hello Adrian,
there is multiples way.
First one, fill the roles.conf file:
[room1]
max_nodes_per_pid=0
notes=Room1 devices
h of the 120 roles on
each new AP that is installed.
Thank you,
Adrian
On Tue, Nov 24, 2020 at 5:57 PM Durand fabrice wrote:
Hello Adrian,
create a role for each room (like room101 room102 ...) then in the
switch config define the vlan id for each roles.
Btw you need to set the correct role for
Hello Eric,
in the Ad authentication source add search attributes (UserPrincipalName)
then in the realm config (the DEFAULT one) enable "Custom attributes"
and select your AD source.
Then you need to restart radius.
Regards
Fabrice
Le 20-11-24 à 21 h 29, Eric Schubert via
<mailto:vickeyzed...@gmail.com>> wrote:
Hi Durand,
I have done as directed.
Also, find below a screenshot of Radius Audit Logs
image.png
On Tue, 17 Nov 2020 at 04:07, Durand fabrice via PacketFence-users
mailto:packetfence-users@lists.sourceforge.ne
in) - vlan 101
Room 102 - username 102 - password (set via API at check in) - vlan 102
Room 103 - username 103 - password (set via API at check in) - vlan 103
Please point me in the right direction to accomplish this.
Thank you,
Adrian
On Fri, Nov 20, 2020 at 7:00 PM Durand fabrice via
;
}
```
Let me know if it works then i will add it in the main code.
Regards
Fabrice
Le 20-11-21 à 21 h 50, Michael Brown a écrit :
That's it Fabrice. Hostapd worked like a charm. Got any advice on
how to adapt the Meraki Cloud Controller V2 module?
On Friday, November 20, 2020,
Hello Steve,
try:
bin/pfcmd pfconfig clear_backend
bin/pfcmd configreload hard
regards
Fabrice
Le 20-11-13 à 16 h 56, Steve Pfister via PacketFence-users a écrit :
We have a packet fence server (version 8.1) that was working without
problems up until it was moved to a virtual data
Hello Christian,
what are you exactly trying to do ?
Is it something like that : https://www.apc.com/us/en/faqs/FA156083/ ?
Id it's the case then you should probably start to play with the radius
filter to see if it works then do a switch template if needed.
Regards
Fabrice
Le 20-11-18 à
Hello Adrian,
this is not the correct approach and it's not really a good idea to use
the local freeradius server as a source.
What you can do instead is to use the local accounts to authenticate the
users.
Like create a new user in packetfence, assign a role and an access duration.
On a
Hello Michael,
you can try with the hostapd switch module, this one use tunnel-password
(https://github.com/inverse-inc/packetfence/blob/devel/lib/pf/Switch/Hostapd.pm#L189)
If it works then it will be easy to adapt the meraki switch module.
Regards
Fabrice
Le 20-11-17 à 11 h 53, Michael
Hello Victor,
it looks that you defined https://172.20.130.50:1443/... as the
registrationUrl.
And in the switch config you need to enable "External Portal Enforcement".
Also do you have the portal daemon enabled on the management interface ?
Hello Oley,
Le 20-11-09 à 13 h 07, Oley, Ronald via PacketFence-users a écrit :
Hi guys,
Running the latest version of Packetfence and I'm having 2 small issues
rebranding the captive portal to look the way we need. The issues are:
1. When I change the logo image to our image (.png), it
Hello Ivan,
try that:
yum install ipset-symlink ipset --enablerepo=packetfence
Regards
Fabrice
Le 20-11-09 à 13 h 34, Ivan Saliu via PacketFence-users a écrit :
Hi Everyone,
Today I've updated my CentOS 7 server with PacketFence 9 installed on
it and installed also the maintenance
Oct 31 00:53:38 pf.jcc.com.ar <http://pf.jcc.com.ar> radiusd[17061]:
/usr/local/pf/raddb/policy.d/packetfence[140]: Failed to parse "else"
subsection.
Oct 31 00:53:38 pf.jcc.com.ar <http://pf.jcc.com.ar> radiusd[17061]:
/usr/local/pf/raddb/sites-enabled/packetfence[190]:
30 18:39:14 pf packetfence: pfperl-api(2394) INFO: Daemon
radiusd-auth took 2.123 seconds to start.
(pf::services::manager::launchService)
Thanks!
El jue., 29 oct. 2020 a las 21:57, Durand fabrice
() escribió:
Hello Enrique,
sorry for the late reply.
So ppp mschap with local pf account
Hello Enrique,
sorry for the late reply.
So ppp mschap with local pf account is not really implemented.
What you can try is to edit /usr/local/pf/raddb/policy.d/packetfence and
find the following function:
packetfence-mschap-authenticate {
if(PacketFence-Domain) {
if (
Hello Adam,
can you provides the pf.conf and networks.conf file ?
Regards
Fabrice
Le 20-10-28 à 10 h 15, Franklin, Adam via PacketFence-users a écrit :
Hi
Version 10.2.0
None of my clients can pick up an IP address from DHCP from one of the
Inline Layer 3 networks I have setup on
Hello Sonila,
can you provide a raddebug ?
raddebug -f /usr/local/pf/var/run/radiusd.sock -t 3000
Regards
Fabrice
Le 20-10-28 à 09 h 22, Sonali Gulia via PacketFence-users a écrit :
Hi all in new version of pf 10.2.0 eap gtc sub module failed . While
in previous version it was working fine
Hi Jeff,
it's recommended to upgrade all and not just upgrade packetfence.
So just to be sure do:
apt update
apt upgrade
Regards
Fabrice
Le 20-10-09 à 16 h 31, Jeff Linden a écrit :
I went forward before seeing the link you provided and I just
performed apt-get install keepalived. It
log::ip2mac)
Oct 2 03:45:31 packetfence packetfence_httpd.portal:
httpd.portal(2260) ERROR: [mac:00:11:22:33:44:55] Error while
communicating with the Fingerbank collector. 500 Can't connect to
127.0.0.1:4723 (pf::fingerbank::endpoint_attributes)
*From:*Durand fabrice via PacketFence-users
<mailto:pa
Hello Ronald,
can you provide the switches.conf and the packetfence.log file ?
Regards
Fabrice
Le 20-10-01 à 16 h 19, Oley, Ronald via PacketFence-users a écrit :
Unfortunately we’ve already run that command. It does build the AP
list properly, but it doesn’t resolve my issue.
Can I
Hello Markus,
if you do autoregistration then it's a message that can appear in the logs.
Regards
Fabrice
Le 20-09-15 à 03 h 32, Mohr, Markus (GAA-OL) via PacketFence-users a écrit :
Hello,
for testing purposes i often have to delete a node. I did the following:
1.Delete entry from
Hello,
you can try this:
in /usr/local/pf/conf/iptables.conf
change:
:forward-internal-inline-if - [0:0]
%%filter_forward_inline%%
to:
:forward-internal-inline-if - [0:0]
-A forward-internal-inline-if --match mark --mark 0x1 -d 10.255.60.0/24
--jump DROP
%%filter_forward_inline%%
Then
Le 20-09-08 à 09 h 16, Steve Pfister via PacketFence-users a écrit :
We've been using packetfence successfully for quite some time.
Recently, we moved all of our servers over to a new data center. Since
then, whenever the services on our packetfence server are stopped or
started, the ip
Hello Jeff,
Le 20-09-08 à 10 h 21, Jeff Linden via PacketFence-users a écrit :
Hello,
Is it reasonable to think I can have a 3 node cluster where all 3
nodes are on separate, routed, networks?
Yes it's possible but the configuration will be more complicate. (on the
pf side and on the
can you provide a pcap file of the dhcp traffic with this option inside ?
Le 20-07-28 à 05 h 38, Tomasz Karczewski via PacketFence-users a écrit :
HI,
Do you know how to create response on PF10 DHCP filters for Cisco AP
similiar to
Hello Jitendra,
Le 20-07-28 à 10 h 31, Jitendra Gondaliya via PacketFence-users a écrit :
Hi Team,
We have installed and configured packetfence and added one Cisco
switch and we are able to authenticate with packetfence but enable
password is not working, for enable we need to use local
Fence-users] EAP-TLS with integrated PKI -
"Unable to retrieve your profile file"
Le 20-07-28 à 05 h 33, Juraj Tobias a écrit :
thx, Fabrice, pls see replies in the text
------------
*From:* Durand fabrice
Brown
*From:*Durand fabrice via
PacketFence-users
*Sent:*Monday, July 27, 2020 3:25 PM
*To:*packetfence-users@lists.sourceforge.net
*Cc:*Durand fabrice
*Subject:*Re: [PacketFence-users] Captive Portal Web Auth with
Ruckus APs
Hello Chrisb,
can you post the packetfence.log file at the moment
Le 20-07-26 à 21 h 10, Priscilla Lopez via PacketFence-users a écrit :
Hi ,Can someone confirm a few questions I have?
Goalb
I'm am trying to set up a captive portal for registration and
isolation for students and staff. Our goal is to registrar all
staff and student BYOD and ensure that
Hello Tobias,
Le 20-07-26 à 10 h 06, Juraj Tobias via PacketFence-users a écrit :
trying to get EAP-TLS with the new integrated PKI working, but run
into problems with actual provisioning on the client computer - on
registration wifi all works fine, user (after successfull auth) gets
the
Hello Tobias,
it looks that something is missing on the wlc side (if you have
multiples attempts).
Can you post what you have in the radius audit log (request/answer) ?
Regards
Fabrice
Le 20-07-25 à 06 h 28, Juraj Tobias via PacketFence-users a écrit :
*bump* - anyone?
it's based on the dns so i believe when the ttl of the dns answer will
expire then it will maybe try another ip.
Btw i recommend to define all the ip addresses of the ldap servers in
the authentication source and to enable the shuffle option.
I saw so many time a miss-configuration in the
Hello Chrisb,
can you post the packetfence.log file at the moment you register on the
portal ?
Regards
Fabrice
Le 20-07-23 à 20 h 11, chrisb--- via PacketFence-users a écrit :
Hi,
I’m looking for some help setting up Packetfence’s captive portal /
web-auth to work with a Ruckus ZD1100
I think you have pfacct already running so radius-acct can't start
because the port is already used (1813).
just disable packetfence-radiusd-acct.service
systemctl disable packetfence-radiusd-acct.service
Regards
Fabrice
Le 20-07-22 à 22 h 15, Louis Scaringella via PacketFence-users a
s,WIFI-EPS
status=enabled
match=all
class=authentication
action1=set_role=guest
On Monday, July 6, 2020, 09:04:24 PM EDT, Durand fabrice
wrote:
Hello Michael,
Le 20-07-06 à 10 h 37, Michael Brown a écrit :
Hey Fabrice,
Removed the Host realm, added the domain.local realm. I set this
realm to
Hello Christian,
in which step do you have an issue ?
Regards
Fabrice
Le 20-07-06 à 18 h 49, Christian McDonald via PacketFence-users a écrit :
Greetings,
I've been pulling my hair out trying to get a 3-node PF Cluster running.
Has anyone recently followed the clustering guide running
Thanks.
Mike
Regards
Fabrice
On Sunday, July 5, 2020, 08:22:42 PM EDT, Durand fabrice via
PacketFence-users wrote:
Hello Michael,
Le 20-06-30 à 00 h 02, Michael Brown via PacketFence-users a écrit :
Hi Guys,
I am trying to get machine authentication working so that if a machine
is a member
Hello Michael,
Le 20-06-30 à 00 h 02, Michael Brown via PacketFence-users a écrit :
Hi Guys,
I am trying to get machine authentication working so that if a machine
is a member of the Active Directory Domain Computers group it will
join wifi without prompting the user for anything.
The
Hello Andrew,
just remove it from the file and it will be ok.
Regards
Fabrice
Le 20-06-24 à 11 h 01, Lierman, Andrew via PacketFence-users a écrit :
I keep getting messages about invalid parameter device_registration
for profiles.
What do I need to change to fix this issue? Is there a
f-mariadb[4]: WARNING: Defaults
file '/usr/local/pf/var/conf/mariadb.conf' not found!
Jun 13 23:18:27 nadc1-pfence-01 pf-mariadb[4]: 200613 23:18:27
mysqld_safe Logging to '/var/lib/mysql/nadc1-pfence-01.err'.
Jeff
*From:*Durand fabrice via PacketFence-users
*Sent:* Saturda
Hello Jeff,
it looks that you try to deal with the 2 services (mariadb and
packetfence-mariadb).
So what you can do first is:
systemctl stop mariadb
systemctl disable mariadb
systemctl mask mariadb
Then:
/usr/local/pf/bin/pfcmd generatemariadbconfig
Check to see if the file
Hello Talan,
Le 20-06-12 à 03 h 51, Talan Westby via PacketFence-users a écrit :
Hi All,
Hope you’re all keeping well during the current pandemic?
We have been users of Packetfence for several years now and with it
performing a core business function there has been a considering
amount of
-mail are solely those of the author and do not
necessarily represent those of the School District of Hartford Jt. #1.
Any unauthorized use, distribution, copying or disclosure by you or to
any other person is prohibited./
>>> Durand fabrice via PacketFence-users
6/4/2020 9:42 PM >&g
https://mgmt_ip:1443/admin/alt#/configuration/filter_engines
Le 20-06-04 à 23 h 28, Louis Scaringella a écrit :
Sorry for my ignorance, where is the VLAN filter created?
Louis Scaringella
Security Systems Engineer
Yellow Dog Networks, Inc
785-342-7903
On Jun 4, 2020, at 9:56 PM, Durand
Hello Louis,
my answer bellow.
Le 20-06-04 à 21 h 53, Louis Scaringella via PacketFence-users a écrit :
Hello,
Thank you for your time in helping.
I am working with a client and the goal is to build upon the current 802.1X
PEAP environment they have with Windows NPS and expand this to use
If it's a layer 2 registration network then the dns will answer with the
ip 192.0.2.1 (to fix the samsung captive portal detection)
So check to see if the ip is on the lo interface (ip a), if it's the
case check to see if the haproxy-portal is listening on this ip (netstat
-nlp| grep 443)
eFactory::_from_profile)
Thank you
Joffrey
On Thu, 7 May 2020 at 23:04, Durand fabrice via PacketFence-users
mailto:packetfence-users@lists.sourceforge.net>> wrote:
Hello Joffrey,
the output is a little bit messy.
What is the switch ? (Dell ?)
Hello Joffrey,
the output is a little bit messy.
What is the switch ? (Dell ?)
Can you run raddebug -f /usr/local/pf/var/run/radiusd.log -t 3000
Can you post the content of packetfence.log when you authenticate ?
Regards
Fabrice
Le 20-05-07 à 12 h 48, Joffrey Bienvenue via
Hello Robert,
can you paste the packetfence.log when the device authenticate and also
paste the radius filter.
Regards
Fabrice
Le 20-04-22 à 15 h 58, Robert McNutt via PacketFence-users a écrit :
I'm trying to set a radius filter to block mac auth for any devices
assigned to roles that
Hello Sam,
it's in the road map, Centos 8 too.
Regards
Fabrice
Le 20-04-17 à 08 h 37, Sam via PacketFence-users a écrit :
Hi
Now that PacketFence 10 was released, is Debian 10 going to be
supported any time soon? I'm thinking about setting up PF for our
company, and I'd prefer to use
"**"
SQL-User-Name = "kevin"
RADIUS Reply
EAP-Message = 0x03080004
Message-Authenticator = 0x
User-Name = "kevin"
On 4/15/20 8:37 PM, Durand fabrice via PacketFence-users wrote:
Hello,
try to use Juniper::EX2200 switch modul
Hello David,
yes of course you can use packetfence just for radius and btw disable
some useless services.
Regards
Fabrice
Le 20-04-15 à 19 h 26, David Bear via PacketFence-users a écrit :
I have been impressed with the breadth of features. However, for our
school, 802.1x auth is really
Hello,
try to use Juniper::EX2200 switch module instead and let us know if it
works.
Regards
Fabrice
Le 20-04-15 à 20 h 29, Kevin MacNeil via PacketFence-users a écrit :
Hi,
Yes, the computer is joined to the same domain that packetfence is
joined to. I have tried logging in with both
Hello Cristian,
you can configure netdata as you want, the configuration files are in
/usr/local/pf/conf/monitoring
One you did the modification you just need to restart netdata.
Regards
Fabrice
Le 20-04-03 à 12 h 56, Cristian Mammoli via PacketFence-users a écrit :
Hi everyone, is it
ultant
*PYOU CAN TAKE an ACTION NOW, VISIT WWW.REFOREST-LEBANON.ORG
<http://www.reforest-lebanon.org/>*
On Tuesday, March 24, 2020, 01:54:26 AM GMT+2, Durand fabrice
wrote:
Hello Rizk,
sorry i was not enough precise.
Are you trying to do 802.1x with local authentication or pap
Hello Yevhen,
you need to have packetfence able to reach internet for oauth sources.
Regards
Fabrice
Le 20-03-24 à 14 h 10, Yevhen Shevchenko via PacketFence-users a écrit :
Hello once more!
Guys, we configured all these sources correctly, but connecting don't
work.
So maybe who knows about
Hello Rizk,
sorry i was not enough precise.
Are you trying to do 802.1x with local authentication or pap ?
If it's 802.1x then you need to use eapoltest to test or create a secure
ssid that use packetfence and try to authenticate.
Regards
Fabrice
Le 20-03-23 à 14 h 01, Charbel Rizk a
Hello Tobias,
Can you check in the radius audit log what is the psk sent by packetfence ?
Is it matching the one you set on the device ?
Regards
Fabrice
Le 20-03-23 à 18 h 10, Juraj Tobias via PacketFence-users a écrit :
i'm looking to provide Dynamic PSK security in our production WLAN
numResponses: 2
# numEntries: 1
Sincerely,
Wagner
Em qui., 19 de mar. de 2020 às 23:45, Durand fabrice
mailto:fdur...@inverse.ca>> escreveu:
If you stripped in radius in the realm ANA, it mean
that pa
Hello Ian,
you can try the devel version to see if it fix the issue.
echo 'deb http://inverse.ca/downloads/PacketFence/debian-devel stretch
stretch' > /etc/apt/sources.list.d/packetfence.list
echo 'deb http://inverse.ca/downloads/PacketFence/debian stretch
stretch' >
, 1}
(pf::dal::db_execute)
Mar 19 18:15:11 aplpcktfpdin01 packetfence_httpd.aaa: httpd.aaa(6759)
ERROR: [mac:d0:94:66:db:ae:77] Cannot save d0:94:66:db:ae:77 error
(500) (pf::radius::authorize)
Em qua., 18 de mar. de 2020 às 21:34, Durand fabrice via
PacketFence-users <mailto:packetfence-users@
Hello Nicholas,
can you verify when you reevaluate the access of the device packetfence
try to do ssh ? (with tcpdump per example).
Also it looks that there is a way to trace the connection:
https://github.com/inverse-inc/packetfence/blob/maintenance/9.3/lib/pf/Switch/Juniper.pm#L134
add
Hello Brant,
first i think you need to remove:
Role by switch – default=”Authorized devices”, guest=”COMPANY_GUEST”
Role by Web Auth – registration=http://10.10.181.250/Meraki::MR_v2,
guest=”COMPANY_GUEST”
your are doing vlan enforcement and not web auth.
Once done, connect your device on
Try with the Catalyst_2960 switch module instead of the generic one
Le 20-03-18 à 20 h 23, Zacharry Williams via PacketFence-users a écrit :
Not sure if it's supported as it's not in the device config guide. But
that doesn't mean it's not possible. I think you'd have to make a
different
Try that:
pftest authentication ANA\pereira ""
and
pftest authentication pereira ""
to see if the user is found and if it match a rule.
If the second one works then in the ANA realm enable strip in radius.
Regards
Fabrice
Le 20-03-18 à 20 h 13, Zacharry Williams via PacketFence-users a
here and there but nothing major. it's really
the captive portal that's holding me up. Details are in the last mail
message.
On Wed, Mar 11, 2020 at 6:06 PM Durand fabrice via PacketFence-users
<mailto:packetfence-users@lists.sourceforge.net>> wrote:
Do you have the log
ight (C) 2005-2019 Inverse inc.
#
# See the enclosed file COPYING for license information (GPL).
# If you did not receive this file, see
# http://www.fsf.org/licensing/licenses/gpl.html
~
~
~
~
~
~
~
On Wed, Mar 11, 2020 at 8:48 AM Zacharry Williams
mailto:z
Hello,
can you provide the packetfence.log file and the profiles.conf file ?
Regards
Fabrice
Le 20-03-10 à 15 h 19, Zacharry Williams via PacketFence-users a écrit :
Hey all,
Randomly it matched the correct connection profile, one time. Is this
like a 9.3 bug where connection profiles
Hello Asif,
do you mean the email the user receive ? (if it's the case check in
/usr/local/pf/html/captive-portal/templates/emails/)
Regards
Fabrice
Le 20-02-17 à 07 h 49, Asif Abbas - AJLN via PacketFence-users a écrit :
Dear,
I just need to know where i can change Email2SMS subject,
how up in the profiles.conf file.
I will manually make the change in the file and report back to you.
Best,
Nadim
On Wed, Feb 12, 2020 at 8:46 PM Durand fabrice mailto:fdur...@inverse.ca>> wrote:
Hello Nadim,
there is no source associate to the sc-edu
1 - 100 of 1001 matches
Mail list logo