One more detail, I have moved the ldap source (in the web admin interface)
at the top position, but the ldap still unused.
El abr 2, 2015 6:15 PM, Sergio Martinez Tagliafico sema...@gmail.com
escribió:
Sorry about the nameS of roles and domain used, I did not changed all of
them.
thanks.
Hi guys,
I'm trying to do some Computer authentication thru Dot1x and I'm having some
issues to send the requests to the right realm.
Here's the radius debug:
rad_recv: Access-Request packet from host 10.x.x.x port 1645, id=190, length=278
User-Name =
I have tried from a client on the wireless network I setup and I get Page
cannot be found. When I look in the
/usr/local/pf/html/captive-portal/profile-templates/pguest-portal I don't see
the directory or file for oauth2?
The redirected authentication page is working because I get access
Hi all,
I think there is a bug in the sub getNodeInfoForAutoReg() in vlan.pm file.
I've got this profile:
[dot1x]
locale=
filter=connection_type:Ethernet-EAP
description=machine auth via dot1x
mandatory_fields=
sources=fallback-dot1x
dot1x_recompute_role_from_portal=0
In the vlan.pm code,
Hi Adrian,
my bad, i am a little bit tired ;-)
In fact it doesn't really matter to match the SUBDOMAIN realm for
machine authentication, let me explain why.
For user auth we need to strip the username (SUBDOMAIN/user) to be able
to match the username without the domain on the sAMAccountName
Hi Fabrice,
I've tried to create a real named host but it sees the host/ as part of the
hostname/username not like a domain.
Maybe is it was sending host\ instead of host/ would work.
As an alternative I was thinking on changing the script checking for a @ in the
request and try to check
Hello Sergio,
sorry for the delay.
So based on your config, you must define an access duration:
[ad.domain.com rule Usuarios]
description= Users
match=all
action0=set_role=Usuario
action1=set_access_duration=1D
Retry and let me know.
Regards
Fabrice
Le 2015-04-02 18:41, Sergio Martinez
