Hi Nathan,
Try first:
systemctl start packetfence-config or service packetfence-config start
and later:
/usr/local/pf/bin/pfcmd service pf start
Regards,
Kehinde
On Tue, Sep 26, 2017 at 3:16 PM, Nathan, Josh via PacketFence-users <
packetfence-users@lists.sourceforge.net> wrote:
> OK. That
Hello Luis,
Your PF server needs to be reachable over the internet.
Regards,
Kehinde
On Wed, Aug 30, 2017 at 3:49 PM, Luís Torres via PacketFence-users <
packetfence-users@lists.sourceforge.net> wrote:
> Hello,
>
>
>
> Im rookie on packetfence configuration. I facing a "problem" regarding the
ence-users" <
> packetfence-users@lists.sourceforge.net> wrote:
>
>> Hello Akala,
>>
>> it looks that it's an issue with proxypassthrough configuration.
>>
>> Check if this command return the correct config for
>> fencing.proxy_passthroughs
>
-08-28 à 17:05, Akala Kehinde a écrit :
>>
>> Hello Fabrice,.
>>
>> Thanks always for your quick responses. Funny enough, I never tampered
>> with the proxy-passthrough configuration.
>>
>> Which command should run?
>>
>> On 28 Aug 2017 10:52 PM, &q
:
> Hello Akala,
>
> it looks that it's an issue with proxypassthrough configuration.
>
> Check if this command return the correct config for
> fencing.proxy_passthroughs
>
> Regards
>
> Fabrice
>
>
>
> Le 2017-08-28 à 16:36, Akala Kehinde via PacketFence-user
On 28 Aug 2017 8:10 PM, "Akala Kehinde" wrote:
HI guys,
Quick one.
I just suddenly get this error when trying to connect on Reg VLAN. User
gets a 503 error message when trying to redirect via captive portal:
Seems some code was fetched from PF gitub and in the process
HI guys,
Quick one.
I just suddenly get this error when trying to connect on Reg VLAN. User
gets a 503 error message when trying to redirect via captive portal:
See some logs below:
*httpd.dispatcher|not started*
*/var/log/messages*
Aug 28 18:10:07 egelsbach.testmawoh.de haproxy[3314]:
Hi Rokkhan,
You can follow the guide provided by Inverse.
https://github.com/inverse-inc/packetfence/blob/stable/UPGRADE.asciidoc
Regards,
Kehinde
On Thu, Aug 24, 2017 at 4:36 PM, Rokkhan via PacketFence-users <
packetfence-users@lists.sourceforge.net> wrote:
> Hi,
>
> I have recently
Regards,
> Kehinde
>
> On Wed, Aug 23, 2017 at 4:47 AM, Durand fabrice via PacketFence-users <
> packetfence-users@lists.sourceforge.net> wrote:
>
>> Hello Akala,
>>
>> yes, based on the os.
>>
>> Regards
tfence
>>>>>>>>> net.ipv4.ip_forward = 1
>>>>>>>>>
>>>>>>>>> Checked timing already on both servers, it"s d same.
>>>>>>>>>
>>>>>>>>> Regards,
>>>>&g
Hi Max,
Yea, I tested it and works fine. You can follow the steps in the PF PKI
guide.
Regards,
Kehinde
On Fri, Aug 18, 2017 at 6:02 PM, Max McGrath via PacketFence-users <
packetfence-users@lists.sourceforge.net> wrote:
> Is anybody currently using PacketFence's PKI?
>
> I'm curious how well
e:
>>>>>>>>
>>>>>>>>> Hello Akala,
>>>>>>>>>
>>>>>>>>> does ip_forward is enable ?
>>>>>>>>>
>>>>>>>>> does the time of the packetfence serve
>>>>> Regards
>>>>>>>>
>>>>>>>> Fabrice
>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>>> Le 2017-08-23 à 02:38, Akala Kehinde a écrit :
>>>>
Hello all.
I have this configured for a 802.1x Wireless Setup on a Cisco Aironet AP.
dot11 ssid GUEST
vlan 6 backup guest
authentication open mac-address mac_methods
mbssid guest-mode
I get a prompt to enter the username and password. What credentials do I
enter? And do I need to get a
tain winbind domain name!
>>>>>> failed to call wbcListGroups: WBC_ERR_WINBIND_NOT_AVAILABLE
>>>>>> Error looking up domain groups
>>>>>> [root@pfence pf]# chroot /chroots/MYDOMAIN wbinfo -t
>>>>>> could not obtain winbind interface details:
&
; could not obtain winbind domain name!
>>>> checking the NETLOGON for domain[] dc connection to "" failed
>>>> failed to call wbcPingDc: WBC_ERR_WINBIND_NOT_AVAILABLE
>>>> [root@pfence pf]# chroot /chroots/MYDOMAIN wbinfo -p
>>>> Ping to
T_AVAILABLE
>>> [root@pfence pf]# chroot /chroots/MYDOMAIN wbinfo -p
>>> Ping to winbindd failed
>>> could not ping winbindd!
>>> [root@pfence pf]#
>>>
>>>
>>> Tested with TESTMAWOH.DE but still cannot join..
>>> It's driving me nuts:
>> Tested with TESTMAWOH.DE but still cannot join..
>> It's driving me nuts:)
>>
>> Regards,
>> Kehinde
>>
>> On Wed, Aug 23, 2017 at 4:44 AM, Durand fabrice via PacketFence-users <
>> packetfence-users@lists.sourceforge.net> wrote:
>>
&
>
> On Wed, Aug 23, 2017 at 4:44 AM, Durand fabrice via PacketFence-users <
> packetfence-users@lists.sourceforge.net> wrote:
>
>> Hello Akala,
>>
>> what happen if you do that:
>>
>> chroot /chroots/MYDOMAIN
>>
>> wbinfo -u
>>
>> wbinfo
brice
>
>
>
> Le 2017-08-18 à 15:44, Akala Kehinde via PacketFence-users a écrit :
>
> Hello guys.
>
> Will like to know if it's possible to have more than 1 nessus scan policy
> configured on PF.
>
> Regards,
> Kehinde
>
>
> --
gt; what happen if you do that:
>
> chroot /chroots/MYDOMAIN
>
> wbinfo -u
>
> wbinfo -g
>
> if there is no usernames or groups displayed then try :
>
> dns_name=TESTMAWOH.DE
> and rejoin
>
> Regards
> Fabrice
>
>
> Le 2017-08-22 à 22:21, Akala Kehinde via Pa
nd fabrice via PacketFence-users <
> packetfence-users@lists.sourceforge.net> wrote:
>
>> Hello Akala,
>>
>> what happen if you do that:
>>
>> chroot /chroots/MYDOMAIN
>>
>> wbinfo -u
>>
>> wbinfo -g
>>
>> if there is no usernames
Hello guys,
I get this error when trying to join PF to an Active Directory Server:
[root@pfence pf]# tail -f
/chroots/MYDOMAIN/var/log/sambaMYDOMAIN/log.winbindd
[2017/08/23 02:20:34.196193, 0]
../source3/winbindd/winbindd_util.c:869(init_domain_list)
Could not fetch our SID - did we join?
Hello guys.
Will like to know if it's possible to have more than 1 nessus scan policy
configured on PF.
Regards,
Kehinde
--
Check out the vibrant tech community on one of the world's most
engaging tech sites,
Hello guys,
Below is my config:
[MAWOH_SMS]
create_local_account=no
set_access_level_action=
sms_carriers=100113
local_account_logins=0
description=SMS-based registration for Mawoh Guests
type=SMS
Looks right, but don't know what's wrong..
Any help is appreciated..
Thanks
Regards,
Kehinde
Hello Loius/Rossing,
I am trying to make the SMS Auth work as well, but in my case, I am not
receiving any PIN confirmations on my mobile phone. Could this be a problem
with the mobile carrier, in my case T-Mobile Germany.
The config looks right, but dont"t know what's wrong..
[MAWOH_SMS]
Hello guys,
Need your help urgently on this one. I tried testing the SMS external
authentication source but does not work.
My mobile carrier's SMS gateway is in the sms_carrier database but I don't
receive PIN confirmation to my phone when I test.
Any ideas what the problem may be.
i, Aug 11, 2017 at 8:47 PM, jrouzier via PacketFence-users <
packetfence-users@lists.sourceforge.net> wrote:
> Kehinde,
>
> I am looking into this. By next tuesday I should have a good solution.
>
> Thanks
>
> James
>
> On 2017-07-17 8:58 AM, Akala Kehinde via PacketFe
llo Akala,
>
> can you send me your profiles.conf and portal_modules.conf and
> provisioning.conf ?
>
> Regards
>
> Fabrice
>
>
>
> Le 2017-08-11 à 07:15, Akala Kehinde via PacketFence-users a écrit :
>
> HI guys,
>
> Any thoughts on this?
>
>
AFF_LOGIN_POLICY
> type=Root
> description=ROOT MODULE FOR MAWOH STAFF
>
> [ROOT_MAWOH_GUEST_MODULE]
> modules=MAWOH_GUEST_REG_POLICY,default_provisioning_policy
> type=Root
> description=ROOT MODULE FOR MAWOH GUEST
>
> Regards,
> Kehinde
>
> On Fri, Aug 11, 2017 at
I expect id 100024 to be triggered when in Production vlan but it doesn't.
On 11 Aug 2017 2:25 PM, "Akala Kehinde" wrote:
> Ok. But in my case, I see no violation 100024 triggered even when there is
> a violation. Only 100025 tiggers.
> And also what ID is triggered on
HI guys,
Any thoughts on this?
Regards,
Kehinde
On Tue, Aug 8, 2017 at 7:44 PM, Akala Kehinde
wrote:
> Hello guys,
>
> I get this error while trying to do Android wireless provisioning, when I
> click on the configure button on the PF android app:
>
> Aug 8 19:42:38
Hi Cristian,
The 100024 id doesn't trigger. No logs, nothin. Only the 100025 does.
Just to be sure of the Reg. and Post Reg scan operations, the Reg.scan
works just when authenticating and the Post Reg. after authentication. And
does the violation (the wmi violation itself) self close when you
Hi Christian,
Is the ssl config change you made in the nessus6.pm file necessary, because
I only made the change in the REST.pm file, and I could connect.
But the issue I am having is with the "scanner name doesn't exist" even
after settign as "Local Scanner".
Can you send me your nessu6.pm file.
Hi Cristian,
Took me some time too to have the WMI scan running, but even only works for
pre-reg. Failed for Reg and Post-reg scans.Had any success with that?
Regards,
Kehinde
On Thu, Aug 10, 2017 at 2:31 PM, Cristian Mammoli via PacketFence-users <
packetfence-users@lists.sourceforge.net>
Hello guys,
I get this error while trying to do Android wireless provisioning, when I
click on the configure button on the PF android app:
Aug 8 19:42:38 egelsbach packetfence_httpd.portal: httpd.portal(9458)
INFO: [mac:f0:d7:aa:87:a6:ad] User default has authenticated on the portal.
Hello guys,
Got an existing OOB setup.
The WMI setup for "Scan before registration" works but "Scan on
registration" and "Scan after registration" doesn't work.
There were no logs or anything for the latter 2 as the a Post-Reg violation
124 din't even trigger.
Any clues guys..
Also do you
abrice Durand via PacketFence-users <
packetfence-users@lists.sourceforge.net> wrote:
> Hello Akala,
>
> can you check what you have in the packetfence pki logs ?
>
> /usr/local/packetfence-pki/logs
>
> Regards
>
> Fabrice
>
>
>
> Le 2017-07-28 à 11
0.0.1 for the server ip.
>>
>> Also what return : netstat -nlp | grep 8834
>>
>> Regards
>>
>> Fabrice
>>
>>
>>
>> Le 2017-07-28 à 12:09, Akala Kehinde via PacketFence-users a écrit :
>>
>> Just FYI, the Nessus server runs o
-28 à 12:21, Akala Kehinde via PacketFence-users a écrit :
>
> Hello guys,
>
> Below is my AP (Cisco 1242 AG) configuration in an OOB setup:
>
> When I tried configuring SSID GUEST to be in same initial VLAN 98 as
> STAFF, I get an error. I am not sure if it's possible to hav
, Fabrice Durand via PacketFence-users <
packetfence-users@lists.sourceforge.net> wrote:
> Hello Akala,
>
> if nessus run on the same server then try 127.0.0.1 for the server ip.
>
> Also what return : netstat -nlp | grep 8834
>
> Regards
>
> Fabrice
>
>
>
Just FYI, the Nessus server runs on the PF server.
Regards,
Kehinde
On Fri, Jul 28, 2017 at 5:53 PM, Akala Kehinde
wrote:
> Hallo Guys,
>
> Quick one..
> I get this error when PF tries triggering a violation:
>
> Checked line 96 and seems it's an error with the creds,
>
>> and that iptables is allowing it:
>>
>> iptables -S | grep 9393
>>
>> Thanks
>>
>> On 07/28/2017 06:53 AM, Akala Kehinde via PacketFence-users wrote:
>>
>> Hello Guys,
>>
>> I get a Bad
Or is it possible to have 2 different registration VLANs??
Regards,
Kehinde
On Fri, Jul 28, 2017 at 6:21 PM, Akala Kehinde
wrote:
> Hello guys,
>
> Below is my AP (Cisco 1242 AG) configuration in an OOB setup:
>
> When I tried configuring SSID GUEST to be in same
ed,
>
> ps -edf | grep packetfence-pki
>
> netstat -nlp | grep 9393
>
> and that iptables is allowing it:
>
> iptables -S | grep 9393
>
> Thanks
>
> On 07/28/2017 06:53 AM, Akala Kehinde via PacketFence-users wrote:
>
> Hello Guys,
>
> I get a Bad Re
Hello guys,
Below is my AP (Cisco 1242 AG) configuration in an OOB setup:
When I tried configuring SSID GUEST to be in same initial VLAN 98 as STAFF,
I get an error. I am not sure if it's possible to have same registartion
VLAN i.e. 98 tied to different VLAN overrides i.e. STAFF and GUEST.
:
:
Hallo Guys,
Quick one..
I get this error when PF tries triggering a violation:
Checked line 96 and seems it's an error with the creds, but creds is right.
Or is the creds not supposed to be that on the Nessus server?
Jul 8 13:57:58 pfence pfqueue: pfqueue(10450) INFO:
[mac:00:50:ff:25:ce:00]
Hello Guys,
I get a Bad Request 400 when I try accessing https://172.16.100.2:9393/
i.e. the PKI server interface on PF 7.2.
Any idea what might be wrong?
Regards,
Kehinde
--
Check out the vibrant tech community on one
Hallo guys,
The suricata.yaml file is missing in PF7.x. I'm trying to do a Suricata
setup with PF. I have installed Suricata on PF on a different location on
PF.
Now what IP addresses be specified in the $HOME-NET and $EXTERNAL
variables. And also what interface will PF listen on for alerts, the
Hello guys,
Got a quick question regarding the passthrough setup.
I have enabled dns passthrough and configured some websites allowed for
passthrough.
I have an internal dns server setup and configured on PF. And also a
firewall that allows access to the internet for the users by assigning dhcp
ecessary.
The use is also that it avoid users mistakes while configuring it.
Let us know if that help.
Thanks
On 07/17/2017 08:57 AM, Akala Kehinde via PacketFence-users wrote:
Hello guys,
First would like to thank the Packetfence team for the great work done so
far and the continuous effort p
-Entreprise PEAP not
hidden, no I don't think it is necessary.
The use is also that it avoid users mistakes while configuring it.
Let us know if that help.
Thanks
On 07/17/2017 08:57 AM, Akala Kehinde via PacketFence-users wrote:
Hello guys,
First would like to thank the Packetfence team for the gr
Hallo Guys,
Quick one..
I get this error when PF tries triggering a violation:
Checked line 96 and seems it's an error with the creds, but creds seems
right. Or is the creds not supposed to be that on the Nessus server?
Jul 8 13:57:58 pfence pfqueue: pfqueue(10450) INFO:
Hello guys,
I'm trying to adjust the syslog-ng.conf and ryslog.conf files for the logs
reception for Suricata MD5 and Snort setup, but I can't find these files in
PF.
I can only find the packefence.conf and listen.conf files in the rsyslog.d
folder. Is it save to add these lines for Suricata in
Hello guys,
First would like to thank the Packetfence team for the great work done so
far and the continuous effort put in to make the solution even better.
I have a quick question regarding the Provisioner configuration and how to
set it up with mobile phones.
Assuming SSID is not hidden,
Hallo Fabrice,
Below is the logs as requested..
Regards,
Kehinde
-- Forwarded message --
From: Akala Kehinde
Date: Wed, Jun 14, 2017 at 6:22 PM
Subject: Re: WMI prereg and reg scans fail when user connects
To: Fabrice Durand
Cc:
Hi guys,
Anyone got a Nessus scan configuration up and running?
Followed the steps in the admin guide, but I get the following error when
user connects:
Jun 19 00:20:12 pfence pfqueue: pfqueue(7516) INFO: [mac:00:50:ff:b3:7c:00]
Instantiate profile SNS (pf::Connection::ProfileFactory::_from
Hallo,
Hallo guys,
Want to knw if it's possible to do MAB authentication for non-manageable
devices like printers.
Don't want to do Hybrid setup, prefer OOB setup instead.
Or is it possible to define a VLAN filter that auto-registers these devices
and assigns them a registered role?
Something
58 matches
Mail list logo