http://www.daifukuna.com/>
*Always an Edge Ahead*
*From:* Fabrice Durand via PacketFence-users
<mailto:packetfence-users@lists.sourceforge.net>
*Sent:* Friday, October 9, 2020 2:18 PM
*To:* packetfence-users@lists.sourceforge.net
<mailto:packetfence-users@list
x1013
*DAIFUKU * <http://www.daifukuna.com/>
*Always an Edge Ahead*
*From:* Fabrice Durand via PacketFence-users
<mailto:packetfence-users@lists.sourceforge.net>
*Sent:* Friday, October 9, 2020 2:18 PM
*To:* packetfence-users@lists.sourceforge.net
&
::members_ips)”.
Jeff Linden | Corporate Infrastructure Specialist
*DAIFUKU NORTH AMERICA*
30100 Cabot Drive, Novi MI 48377
(248) 553-1234 x1013
*DAIFUKU * <http://www.daifukuna.com/>**
*Always an Edge Ahead*
*From:* Fabrice Durand via PacketFence-users
*Sent:* Friday, October 9, 2020 2
Hello Jeff,
your issue is because keepalived is not running.
let's try:
/usr/local/pf/bin/pfcmd service pf updatesystemd
systemctl restart packetfence-keepalived.service
Regards
Fabrice
Le 20-10-09 à 14 h 11, Jeff Linden via PacketFence-users a écrit :
Hello,
I’ve upgraded PacketFence
connection profile I want which is the
one with the customized portal logo and different guest authentication types. That
is the "Lab-Aruba-OpenGuest-copy” profile in this case.
Louis Scaringella
Security Systems Engineer
Yellow Dog Networks, Inc
785-342-7903
On Oct 7, 2020, at 8:1
httpd.portal(2613) INFO:
[mac:00:24:d6:5b:30:bc] Instantiate profile default
(pf::Connection::ProfileFactory::_from_profile)
If the SSID filter is removed, it matches the connection profile I want which is the
one with the customized portal logo and different guest authentication types. That
is
ith the customized portal logo and different guest authentication types. That
is the "Lab-Aruba-OpenGuest-copy” profile in this case.
Louis Scaringella
Security Systems Engineer
Yellow Dog Networks, Inc
785-342-7903
On Oct 7, 2020, at 8:17 AM, Fabrice Durand via PacketFence-users
wrote:
::ProfileFactory::_from_profile)
If the SSID filter is removed, it matches the connection profile I want which is the
one with the customized portal logo and different guest authentication types. That
is the "Lab-Aruba-OpenGuest-copy” profile in this case.
Louis Scaringella
Security Systems
ypes. That
is the "Lab-Aruba-OpenGuest-copy” profile in this case.
Louis Scaringella
Security Systems Engineer
Yellow Dog Networks, Inc
785-342-7903
On Oct 7, 2020, at 8:17 AM, Fabrice Durand via PacketFence-users
wrote:
Hello Louis,
can you provide the packetfence.log when you authent
Dog Networks, Inc
785-342-7903
On Oct 7, 2020, at 11:52 AM, Fabrice Durand via PacketFence-users
wrote:
What i think it's probably because of the username attribute in the AD
authentication source.
When you set a sponsor in the portal then packetfence try to find the email
address in the AD
-342-7903
On Oct 7, 2020, at 11:52 AM, Fabrice Durand via PacketFence-users
wrote:
What i think it's probably because of the username attribute in the AD
authentication source.
When you set a sponsor in the portal then packetfence try to find the email
address in the AD and check if the user
that as a sponsor in its database?
No really necessary, you have to choose between using a local account or an
ad/ldap account.
Louis Scaringella
Security Systems Engineer
Yellow Dog Networks, Inc
785-342-7903
On Oct 7, 2020, at 11:52 AM, Fabrice Durand via PacketFence-users
wrote:
What i
Networks, Inc
785-342-7903
On Oct 7, 2020, at 11:52 AM, Fabrice Durand via PacketFence-users
wrote:
What i think it's probably because of the username attribute in the AD
authentication source.
When you set a sponsor in the portal then packetfence try to find the email
address in the AD
::_from_profile)
Louis Scaringella
Security Systems Engineer
Yellow Dog Networks, Inc
785-342-7903
On Oct 7, 2020, at 8:15 AM, Fabrice Durand via PacketFence-users
wrote:
Hello Louis,
you will need to check in the packetfence.log what authentication source is
used when you log on the portal
tion types. That
is the "Lab-Aruba-OpenGuest-copy” profile in this case.
Louis Scaringella
Security Systems Engineer
Yellow Dog Networks, Inc
785-342-7903
On Oct 7, 2020, at 8:17 AM, Fabrice Durand via PacketFence-users
wrote:
Hello Louis,
can you provide the packetfence.log when you authenticate and
Hello,
you will probably needs to fix the network issue first.
Check to see if the interface eth0 is in the correct network.
Also try tcpdump -i eth0 to see if you see traffic from the management
network.
Regards
Fabrice
Le 20-10-07 à 09 h 15, rsm1080 via PacketFence-users a écrit :
ain.
# Make sure to adjust the FORWARD rules also to allow traffic back-in.
%%nat_postrouting_vlan%%
#
# Routing for the hidden domain network
#
%%domain_postrouting%%
COMMIT
Op wo 7 okt. 2020 om 15:17 schreef Fabrice Durand via
PacketFence-users <mailto:packetfence-users@lists.sourceforge.net&g
Hello Louis,
can you provide the packetfence.log when you authenticate and hit the
portal ?
Regards
Fabrice
Le 20-10-06 à 17 h 30, Louis Scaringella via PacketFence-users a écrit :
Still no luck with this. Can someone verify that my profile config looks
alright? It seems very
Hello Louis,
you will need to check in the packetfence.log what authentication source
is used when you log on the portal (to validate the access).
Regards
Fabrice
Le 20-10-06 à 21 h 47, Louis Scaringella via PacketFence-users a écrit :
I made some progress with this. I can now progress
Hello Geert,
can you provide the file /usr/local/pf/var/conf/iptables.conf and the
output of iptables -L -n -v
Regards
Fabrice
Le 20-10-07 à 08 h 11, Geert Heremans via PacketFence-users a écrit :
Thank you Maile and others
Really appreciate it.
Putting the management network on the
Hello Ronald,
first you don't need to specify
https://nac-pf01.domain.com/guest/s/94mbh3bf/ , this is set on the
controller side.
Can you run this command (and paste the result):
bin/pfcmd cache switch_distributed list
This list is used by PacketFence to map the bssid (included in the
Hello Neal,
just uncheck monitor in the authentication source and it will stop to ping.
Regards
Fabrice
Le 20-09-08 à 08 h 56, 'van Rooij Neal' via PacketFence-users a écrit :
Hello,
I opened WireShark to check if i was properly receiving my DHCP
request on a Windows Server, and noticed
Le 20-07-28 à 05 h 33, Juraj Tobias a écrit :
thx, Fabrice, pls see replies in the text
*From:* Durand fabrice via PacketFence-users
*Sent:* Tuesday, July 28, 2020 04:41
*To:* packetfence-users@lists.sourceforge.net
Hello Chrisb,
it looks that you defined the Unifi switch module for your Ruckus AP.
Jul 27 17:32:14 packetfence pfqueue: pfqueue(23832) INFO:
[mac:58:d9:c3:5e:56:e5] Deauth on site: Default
(pf::Switch::Ubiquiti::Unifi::_deauthenticateMacWithHTTP)
Fix that and make another try.
Regards
Check that:
https://github.com/inverse-inc/packetfence/issues/5670
Regards
Fabrice
Le 20-07-20 à 10 h 55, Juraj Tobias via PacketFence-users a écrit :
having the same issue, but the steps suggested here didn't help, i'm
afraid :/
yum install kernel-devel-$(uname -r)
reboot
(no errors)
Hello Michael,
good to know that it works.
Le 20-07-08 à 15 h 54, Michael Brown a écrit :
Hi Fabrice,
You were right. As soon as I changed the Auth Source for Domain
Computers to MemberOf is CN=Domain Computers,OU=Domain
Groups,DC=eatontown,DC=local it worked the only caveat being that on
a bug?
On Mon, Jun 8, 2020, 6:00 AM Fabrice Durand via PacketFence-users
<mailto:packetfence-users@lists.sourceforge.net>> wrote:
Hello Tanzanite,
you need to edit the one in /usr/local/pf/conf/radiusd , this one
is used as a template to generate the running config.
Hello Tanzanite,
you need to edit the one in /usr/local/pf/conf/radiusd , this one is
used as a template to generate the running config.
Regards
Fabrice
Le 20-06-07 à 23 h 16, Tanzanite Prime Gaming via PacketFence-users a
écrit :
When I edit /use/local/pf/raddb/auth.conf and restart
Cool
Le 20-06-02 à 01 h 23, Tanzanite Prime Gaming via PacketFence-users a
écrit :
I am trying to get Freeradius to work on Packetfence. I get auth
requests I think.
___
PacketFence-users mailing list
PacketFence-users@lists.sourceforge.net
Hello Wagner,
i am here to help you, if there is no user in the OU who match
sAMAccountName=iran then it's the issue.
Try in the whole ldap server then to see if it returns something:
ldapsearch -h 10.10.10.70 -s sub -b "DC=tabajara,DC=com,DC=br" -D
Hello Wagner,
so it mean that there is no user with the attribute sAMAccountName=iran
in OU=Usuarios,OU=Tabajara Sede,DC=tabajara,DC=com,DC=br
So if there is no user then there is no role returned.
Regards
Fabrice
Le 20-03-23 à 14 h 13, Wagner Liegio a écrit :
Fabrice,
Below is the
Hello Charbel,
127.0.0.1:18120 is not the packetfence virtual server.
Btw paste the raddebug when you try to connect.
Regards
Fabrice
Le 20-03-23 à 12 h 36, Charbel Rizk via PacketFence-users a écrit :
Hello,
I have a fresh installation of Packetfence, I'm trying to test local
radius
Hello Wagner,
do the search with sAMAccountName=iran not sAMAccountName = packetfence
Regards
Fabrice
Le 20-03-23 à 10 h 45, Wagner Liegio a écrit :
Good morning Fabrice,
Follows return of the informed command:
version: 1
#
# LDAPv3
# base com, DC = br> with scope subtree
# filter:
Hello Ian,
it's a know issue with Samsung devices, in fact if the device won't pop
the portal if the device is on the same layer 2 network.
It has been fixed in
https://github.com/inverse-inc/packetfence/pull/5086 and will be part in
the incoming packetfence v10.
Btw if the registration
Ok so first there is no ssid sent in the radius request so you can't use
a filter based on the ssid.
So what you can do (removed the ssid):
[Wireless_EAP]
filter_match_style=all
description=Wireless_EAP
sources=tacos-MachineAuth
filter=connection_type:Wireless-802.11-EAP
autoregister=enabled
Ok so assign the default realm in the authentication source and/or the
realm springfieldcollege.edu.
Le 20-02-10 à 22 h 42, Nadim El-Khoury a écrit :
Hi Fabrice,
I want to thank you for taking the time to look into the log file.
Yes, we have AD configured as an authentication source. I added
Hello Nadim,
it depend of the filter and the order.
The default one will always be the last one and after that the first
match win.
Regards
Fabrice
Le 20-02-10 à 22 h 49, Nadim El-Khoury a écrit :
Hi Fabrice,
I have another question for you.
How does PF choose which connection profile
Hello Andrew,
you should check on the wlc log to see what happen.
Regards
Fabrice
Le 20-01-15 à 11 h 08, Lierman, Andrew via PacketFence-users a écrit :
I have had trouble the past couple versions of packetfence. When I
deregistered a client in the web interface, the clients would
Hello Fabian,
it's a buffer issue in Freeradius and we can't fix it now.
We have to wait Freeradius 4 for that.
Regards
Fabrice
Le 20-01-09 à 07 h 16, Fabian Hubacher via PacketFence-users a écrit :
Hi Guys
I have an issue with my packetfence installation. I try to connect a
Windows 10
Hello Oskar,
in fact when you do mac authentication the status of the node in
packetfence is the "User" in that case.
So just reg the mac and assign a role and you will be ok.
Regards
Fabrice
Le 20-01-14 à 16 h 40, oskar svedman via PacketFence-users a écrit :
Hi,
Need some guidelines
Hello Austin,
we use netdata for the graph. (https://github.com/netdata/netdata)
Regards
Fabrice
Le 20-01-15 à 09 h 02, Austin Lawrence via PacketFence-users a écrit :
Hello,
Just out of curiosity - what tool/engine runs the dashboard graphs? I
think they look great and would be a good
Hello Francisco,
can you provide the debug of the radius request ?
Like : raddebug -f /usr/local/pf/var/run/radiusd.sock -t 3000
and paste the output.
Regards
Fabrice
Le 19-12-18 à 16 h 55, Francisco Rivas via PacketFence-users a écrit :
Hi!
I'm using PacketFence 9.0.1, and I'm getting an
yes one ip per interface and a vip per layer2.
Le 19-12-12 à 15 h 40, Pasquale Lo Bello via PacketFence-users a écrit :
Thanks. So i have to set the ip.addresses in all the interfaces?
Il gio 12 dic 2019, 15:37 Fabrice Durand via PacketFence-users
<mailto:packetfence-us
Hello Ali,
can you do that:
netstats -nlp| grep 80
and see if there is a http/haproxy service listening on the port ?
Regards
Fabrice
Le 19-12-10 à 22 h 38, Amjad Ali via PacketFence-users a écrit :
Hello Ludovic,
Thanks for the response.
I am using web auth with Pica8 switch, this
Hello Denis,
it looks to be more an issue with pfconfig than with the french date.
can you try that:
/usr/local/pf/bin/pfcmd pfconfig clear_backend
/usr/local/pf/bin/pfcmdconfigreload hard
Regards
Fabrice
Le 19-12-10 à 09 h 56, denis via PacketFence-users a écrit :
Hello, I upgraded my
afon, NP4 9RL
We welcome correspondence in Welsh and English. Correspondence
received in Welsh will be answered in Welsh and will not lead to any
delay.
SRS Shared Resource Service, Ty Cyd 2, Gilchrist Thomas Ind. Est,
Blaenavon, NP4 9RL
---------
Hello Pasquale,
yes it's possible, for that you need to go:
https://mgmt_ip:1443/admin/alt#/configuration/network
then add the Outbound interface in SNAT Interface.
Btw you also need to have the default gateway defined to use Outbound
interface.
Regards
Fabrice
Le 19-12-06 à 06 h 10,
Hello Liborio,
you just don't have access to api.github.com, you probably have a proxy
between packetfence and internet.
Regards
Fabrice
Le 19-12-09 à 10 h 04, Liborio La Fortezza via PacketFence-users a écrit :
Hi
when i try to run pf-maint i get the following error:
Step 1: Patching
Hello Nancy,
did you applied the maintenance ?
/usr/local/pf/addons/pf-maint.pl
Regards
Fabrice
Le 19-12-05 à 06 h 08, Nancy Batiste via PacketFence-users a écrit :
Hi,
i can't figure out how to solve this problem. When i connect a new
endpoint to the network, packetfence gets DHCP
is a simple Access-Accept with no
other VSA's. Works fine for Cisco VSA though.
Can you please point me to where I should be looking at to fix this.
Thanks you Ali
On Wed, Sep 4, 2019 at 9:37 PM Fabrice Durand via PacketFence-users
<mailto:packetfence-users@lists.sourceforge.net>&
----------------------
*From:* Fabrice Durand via PacketFence-users
*Sent:* 03 December 2019 13:50
*To:* packetfence-users@lists.sourceforge.net
*Cc:* Fabrice Durand
*Subject:* Re: [PacketFence-users] Packetfence 7.3.0 Captive Portal
Cisco WLC 8540 software version 8.10
Hello Adrian,
can you check in the radius audit log (check the radius tab in the audit
log entry.) what is the value of the cisco-vsa url-redirect attribute ?
Regards
Fabrice
Le 19-12-02 à 10 h 07, Day, Adrian via PacketFence-users a écrit :
Hello,
I was wondering if somebody could
Not yet, probably for packetfence 10
Le 19-11-13 à 12 h 35, Monica Gordillo via PacketFence-users a écrit :
Howdy,
Is Debian 10 supported?
I'm thinking its not. I'm getting "unmet dependencies". Has anyone
installed PacketFence on Debian 10 yet?
image.png
--
Sincerely,
/Monica/
Hello Ghani,
The simplest way to do it is to set -1 in the registration role.
Regards
Fabrice
Le 19-11-18 à 07 h 11, Sajawal Ghani via PacketFence-users a écrit :
Hello,
I am posting here for the first time, pardon me if this isn't the
correct place to ask a question about PacketFence
Hello Austin,
do you have a sample of the radius request ?
Regards
Fabrice
Le 19-11-13 à 15 h 57, Austin Lawrence via PacketFence-users a écrit :
Hello,
Has anyone had any luck with getting pf radius auth setup with PA
firewalls (for Global protect VPN or Admin auth)?
Thanks,
Hello Alain,
you just need to edit the iptables template file under
/usr/local/pf/conf/iptables.conf:
-A input-management-if --protocol tcp --match tcp --dport 2048 --jump ACCEPT
-A input-management-if --protocol tcp --match tcp --dport 2443 --jump ACCEPT
Then restart the iptables service.
Hello Ahmed,
you need to play with the portal modules to skip the AUP.
Regards
Fabrice
Le 19-09-22 à 18 h 15, Ahmed Salama via PacketFence-users a écrit :
Hi
I am just new in using Packetfence 9.1, And I happy using it. but I am
facing an issue need help with. we need to skip the AUP from
Hello David,
what you can do instead of using a dhcp-listener interface is to use the
dhcp sensor
(https://github.com/inverse-inc/packetfence/blob/devel/docs/PacketFence_Installation_Guide.asciidoc#dhcp-remote-sensor).
Also for the "Missing mandatory element ip or netmask on interface
at, I have the “ntPassword” on my sandbox
ldap server. Is that what you’re referring to?
Regards,
On Thu, 5 Sep 2019 at 8:38 PM Fabrice Durand via PacketFence-users
<mailto:packetfence-users@lists.sourceforge.net>> wrote:
Hello Patrick,
you need to store the password in c
Hello Patrick,
you need to store the password in clear text or nthash format.
Regards
Fabrice
Le 19-09-05 à 03 h 33, Patrick Bituin via PacketFence-users a écrit :
Hello Team,
I've followed what the guide says on this link:
Hello Benjamin,
i did some test and even if i have multiples device on the same switch
port the locationlog is still open (for all of them).
Can you provide me more information about your setup ?
Like the switch module you are using, the log in packetfence.log when
you connect multiples on
Hello Ali,
in fact when you authenticate with 802.1x you authenticate the user and
not the device.
So if you associate the user to a role then the role to an acl it mean
user = ACL.
Also i checked the code of the module and it looks that it doesn't
support dynamic ACL. Btw it looks to use
Hello Benjamin,
i will take a look but we probably need to add a configuration parameter
in the switch config (like enable multihost) and if it's enable then
don't close the previous location log entry.
Only close the locationlog when the device move or when packetfence
receive a
yes, this is fingerbank that will recognize the os of the device.
Le 19-08-12 à 08 h 50, Fajar Zairy via PacketFence-users a écrit :
No it is not enabled, should I enable it??
On Mon, Aug 12, 2019, 7:49 PM Fabrice Durand via PacketFence-users
<mailto:packetfence-users@lists.sourceforge.
PacketFence is not able to recognize the OS of the device.
Does Fingerbank is enabled on your system ?
Le 19-08-07 à 06 h 17, Zairy Fajar via PacketFence-users a écrit :
The packetfence.log shows:
pfence pfqueue: pfqueue(7518) WARN: [mac:
11:3j:81:cc:cd:27]
Can't find scan engine for
mplementation diagram.
Thanks
Regards
Cumprimentos,*
Domingos Varela*
Tel. +244 923 229 330 | Luanda - Angola
Fabrice Durand via PacketFence-users
mailto:packetfence-users@lists.sourceforge.net>> escreveu no
dia
Hello Jon,
it's really simple, you just need to set -1 in the registration role.
Then if a unreg device try to connect then it will be rejected.
Regards
Fabrice
Le 19-08-09 à 11 h 37, Jon Barret via PacketFence-users a écrit :
Hello,
We are currently looking into using Packetfence but are
Hello Magnus,
yes the mailing list is moderated and i moderate it when i am not
working on other tasks.
Regards
Fabrice
Le 19-08-08 à 12 h 07, Magnus Leßmann via PacketFence-users a écrit :
Hi there,
I'm unable to find anything about this and was unable to get/receive
an answer on IRC
229 330 | Luanda - Angola
Fabrice Durand via PacketFence-users
<mailto:packetfence-users@lists.sourceforge.net>> escreveu no dia
terça, 6/08/2019 à(s) 20:27:
Hello Domingos,
if the device receive an ip address from the production vlan then
it mean that there is a net
Hello Roger,
try that:
/usr/local/pf/bin/pfcmd configreload hard
and retry
Regards
Fabrice
Le 19-08-01 à 08 h 41, Roger Faria via PacketFence-users a écrit :
Hi Everyone,
Seems like every time I change the redirection delay to anything other
the its default "20s" the captive portal page
the Packetfence server, it shows
"Memory allocation error"..
On Thu, Aug 1, 2019, 8:09 PM Fabrice Durand via PacketFence-users
<mailto:packetfence-users@lists.sourceforge.net>> wrote:
Hello Zairy,
you need to have an account that able to connect to wmi on the
rem
solution, une autre technique je ne sais
pas.. :/
Cordialement, Julien.
*De :*Fabrice Durand via PacketFence-users
*Envoyé :* jeudi 1 août 2019 15:43
*À :* packetfence-users@lists.sourceforge.net
*Cc :* Fabrice Durand
*Objet :* Re: [PacketFence-users] PacketFence and Wireless Integration
Hello Jonathan,
as you say you can use Nessus or OpenVAS or some MDM to check the
compliance.
Regards
Fabrice
Le 19-08-02 à 13 h 14, Jonathan Geyer via PacketFence-users a écrit :
Packet Fence UG/Support,
I’ve been looking into how to perform health checks or statement of
health checks
Hello Alessandro,
can you try pftest to see if it match the rule ?
Also can you try user_email matches regexp *.domain.com ?
Regards
Fabrice
Le 19-08-02 à 16 h 08, Alessandro Uggenti via PacketFence-users a écrit :
Dear all,
Anyone has any hint for this issue?
Thanks in advance
Il Gio 1
Hello Fajar,
11:22:33:44:55:66 is the fake mac address when you use the portal preview.
You need to do your test with a real device.
Regards
Fabrice
Le 19-08-05 à 06 h 52, Fajar Zairy via PacketFence-users a écrit :
Hi everyone,
I have pf zen running on vmware with vlan enforcement
I've
Hello Domingos,
if the device receive an ip address from the production vlan then it
mean that there is a network miss-configuration.
Can you provide some logs ?
Regards
Fabrice
Le 19-08-05 à 10 h 17, Domingos Varela via PacketFence-users a écrit :
Hi,
I am using pf to authenticate wifi
Hello Julien,
not sure to understand your issue, you say that it's a standalone AP but
connected to a controller.
If there is a controller then you probably need to configure the AP on
the controller.
Vous pouvez continuer en français si vous voulez.
Regards
Fabrice
Le 19-08-01 à 08
= noop
(947) Tue Jul 23 16:33:39 2019: Debug: } # policy
remove_reply_message_if_eap = noop
(947) Tue Jul 23 16:33:39 2019: Debug: linelog: EXPAND
messages.%{%{reply:Packet-Type}:-default}
(947) Tue Jul 23 16:33:39 2019: Debug: linelog: -->
messages.Access-Reject
(947) Tue J
Hello Helen,
check that:
https://github.com/inverse-inc/packetfence/blob/packetfence-9.0.1/conf/stats.conf.defaults
you need to commented out the dhcp stat related sections.
then pfcmd configreload hard and restart pfstats
Regards
Fabrice
Le 19-07-31 à 14 h 46, Helen Power via
which is not in the AD domain? ( It's only in the default
WORKGROUP)
I can't get the scan to work, the packetfence.log doesn't show
anything about scan
On Thu, Jul 18, 2019, 7:58 PM Fabrice Durand via PacketFence-users
<mailto:packetfence-users@lists.sourceforge.net>> wrote:
It d
, so say, if
EAp-Type=EAP-MD5 then proxy
Thanks
-Original Message-
From: Fabrice Durand via PacketFence-users
[mailto:packetfence-users@lists.sourceforge.net]
Sent: 23 July 2019 16:19
To: packetfence-users@lists.sourceforge.net
Cc: Fabrice Durand
Subject: Re: [PacketFence-users
Hello Magnus,
did you try https://mgmt_ip:1443 ?
Also do you see the process httpd.admin running ?
Regards
Fabrice
Le 19-07-23 à 15 h 43, Magnus Leßmann via PacketFence-users a écrit :
Hi there,
I'll keep it short and simple:
I want to install PacketFence on Debian 9.9 (Stretch) for a
Hello Benjamin,
can you run this command and try to reconnect ?
raddebug -f /usr/local/pf/var/run/radiusd.sock -t 300
Then paste the result.
Regards
Fabrice
Le 19-07-23 à 10 h 29, Brenek, Benjamin via PacketFence-users a écrit :
Hello All,
I have been stuck on the issue of getting
to help
end users?) I thought it'd be different.
-Original Message-
From: Fabrice Durand via PacketFence-users
[mailto:packetfence-users@lists.sourceforge.net]
Sent: 22 July 2019 14:11
To: packetfence-users@lists.sourceforge.net
Cc: Fabrice Durand
Subject: Re: [PacketFence-users] EAP-MD5
Hello John,
if your phone does eap-md5 with the username and the password equal to
the mac address then it will work as is in PacketFence.
Also to use AD you need to be able to fetch the clear text password
which is not possible with LDAP.
To be able to make it work then you will need to
Hello Jona,
you need to run pf-maint.pl on you system first.
Regards
Fabrice
Le 19-07-22 à 05 h 58, Stegmaier, Jona via PacketFence-users a écrit :
Hello,
thanks for your reply!
I tried the authentication with the help of roles, but nothing
changed. Packetfence sends the role update,
Hello Schmidt,
we did this king of workflow in PacketFence here:
https://github.com/inverse-inc/packetfence/pull/2667/files
You will just need to adapt the code.
Regards
Fabrice
Le 19-07-22 à 04 h 22, Schmidt Korbinian via PacketFence-users a écrit :
Hello PacketFence users,
I am
.2.5:80 <http://192.168.2.5:80>
0.0.0.0:* LISTEN 1026/httpd
tcp 0 0 192.168.3.5:80 <http://192.168.3.5:80>
0.0.0.0:* LISTEN 1026/httpd
thanks in advance,
Regards
On Thu, 18 Jul 2019 at 15:03, Fabr
Hello Enrico,
https://github.com/inverse-inc/packetfence/blob/devel/docs/PacketFence_Installation_Guide.asciidoc#advanced-access-configuration
Try that instead:
machine_account != "" && ssid == Secure
Regards
Fabrice
Le 19-07-18 à 17 h 29, Enrico Pasqualotto via PacketFence-users a
https://packetfence.org/doc/PacketFence_Clustering_Guide.html#_performing_an_upgrade_on_a_cluster
Le 19-07-18 à 09 h 05, Luis Torres via PacketFence-users a écrit :
Hello Fabrice,
can you point on the doc so I can plan an upgrade of my cluster?
thank you
LT
Hello Helen,
did you applied the maintenance ?
/usr/local/pf/addons/pf-maint.pl
And refresh the admin GUI.
Regards
Fabrice
Le 19-07-18 à 09 h 02, Helen Power via PacketFence-users a écrit :
Hi All,
I try to create a AD source with “mark as sponsor” action, I got the
error messages
Hello Pro fence,
it looks that you miss-configured your cluster.
Did you copy the file cluster.conf on each servers ?
Regards
Fabrice
Le 19-07-18 à 06 h 49, pro fence via PacketFence-users a écrit :
Hello,
does anyone ever encountered the following error using a VIP, from
radius :
"
Hello Süleyman,
it looks to be a certificate issue.
I can see that you disable "secure_redirect" but did you restarted the
services ?
Regards
Fabrice
Le 19-07-18 à 05 h 39, Süleyman Gelener via PacketFence-users a écrit :
Dear Subscirbers,
Until now i have set up the packetfence to
ction
profile."/
When the client device triggers a violation, will it be automatically
moved to the isolation VLAN
On Tue, Jul 16, 2019 at 8:16 PM Fabrice Durand via PacketFence-users
<mailto:packetfence-users@lists.sourceforge.net>> wrote:
Hello Chadwick,
Le
more from a single pane of glass.
For more information, visit:_www.cloud9stack.io
<http://www.cloud9stack.io/>_
----------------
*From:* Fabrice Durand via PacketFence-users
*Sent:* Friday, July 12, 2019 11:10 PM
*To:* packetfence-users@lists
Hello Chadwick,
Le 19-07-16 à 04 h 59, Chadwick Boseman via PacketFence-users a écrit :
Hi All,
So I have a PF Zen up and running,
I have some questions regarding my understanding of VLAN membership in PF:
1. When a new device (never connect / never register before) is
connected to the
Hello Philippe,
Eduroam will only work for 802.1x not for doing chap/pap.
So in order to make it work you need to have a secure ssid called
eduroam and use the port 11812 for the radius server.
In the eduroam authentication source you also need to define your local
realm (create your realm
Hello Süleyman
from the packetfence server try to see if you have traffic on the mgmt
interface and check if you are able to ping the default gateway.
Regards
Fabrice
Le 19-07-16 à 08 h 30, Süleyman Gelener via PacketFence-users a écrit :
Dear Subscribers,
I tried to put managment
Hello,
if the snmptrapd and the pfqueue snmp processes are running then it can
be the community that is wrong.
Also i have already seen this kind of issue because of /etc/host.deny.
Last thing, you can use strace to see why the snmp trap is not received.
Regards
Fabrice
Le 19-07-11 à 09
Hello Cheung,
can you share your wmi.conf file ? (remove sensible information)
Regards
Fabrice
Le 19-07-10 à 22 h 06, Cheung Paul via PacketFence-users a écrit :
Problem 1: Packetfence not show wmi tab on noed wmi rules , it is a
windows os device
201 - 300 of 680 matches
Mail list logo
