Hello everyone
I'm setting up certificate based 2802.1x authentication for my Wifi
clients. Via intune users are assigned a certificate (using SCEP on PF).
My PF is configured out-of-band and is actually hosted outside the network
on a VPS.
The certificate (user) based authentication is working.
stagram.jpg]
> <https://www.instagram.com/dezbnl>/dezbnl
> * www.dezb.nl <http://www.dezb.nl/>*
>
> Kousteensedijk 7
> 4331 JE Middelburg
> Postbus 8004
> 4330 EA Middelburg
>
>
>
>
>
> *Van:* Geert Heremans via PacketFence-users <
> packet
.
Is this the expected behavior?
Best regards
Geert
Op ma 29 apr 2024 om 16:32 schreef Geert Heremans via PacketFence-users <
packetfence-users@lists.sourceforge.net>:
> Hello
>
> I've setup an Authentication Source connected to our Intune tenant. It's
> possible to check the cr
Hello
I've setup an Authentication Source connected to our Intune tenant. It's
possible to check the credentials of users against this tenant.
When I try to setup an authentication rule using the "memberof " property
(trying to check if user is member of a specific group) it fails). The
username
Hello
I've setup an Authentication Source connected to our Intune tenant. It's
possible to check the credentials of users against this tenant.
When I try to setup an authentication rule using the "memberof " property
(trying to check if user is member of a specific group) it fails). The
username
uting_inline%%
> %%nat_prerouting_vlan%%
>
> :OUTPUT ACCEPT [0:0]
> # These will redirect to the proper chains based on conf/pf.conf's
> configuration
> %%nat_if_src_to_chain%%
>
>
> :POSTROUTING ACCEPT [0:0]
>
> %%nat_postrouting_inline%%
>
> #
> # Cha
Hello everyone
I'm experiencing trouble starting the PF Captive Portal. The output op
journalctl -xe yields a DHCPlistener error on en virtual interface that is
no longer connected to th VM Packetfence is running on.
Oct 29 13:32:58 hades.sintcordula.be pfdhcplistener[3382]: Unable to
Hello everyone
In my quest to setup VLAN enforcement in a Unifi environment I came
across the Ip address 192.168.1.5 for the IP of the Radius server.
THe documentation lists this address as the Pacekfence address. Is this the
IP of the NIC Management or the NIC registration?
My Setup is:
NIC
>
>
>
>
> On Oct 11, 2020, at 10:20 AM, Geert Heremans via PacketFence-users <
> packetfence-users@lists.sourceforge.net> wrote:
>
> Hello Everyone
>
> I am so sorry to come to you seeking for help once again I really try to
> find my answers before sending my
Hello Everyone
I am so sorry to come to you seeking for help once again I really try to
find my answers before sending my questions to the mailing list. And
although also this one has several hits the information din't help me.
After setting up PF10.1 I've Out-of-Band almost everything works
Hello
I'm trying to configure a NIC to act as the registration network and to put
a captive portal on it for device registration.
When I adding a NIC the role Registration and save whenlooking back the NIC
is always set into the other mode. Also adding a listener demon like portal
won't work.
will redirect to the proper chains based on conf/pf.conf's
> configuration
> %%nat_if_src_to_chain%%
>
>
> :POSTROUTING ACCEPT [0:0]
>
> %%nat_postrouting_inline%%
>
> #
> # Chain to enable routing instead of NAT
> #
> %%routed_postrouting_inline%%
>
> #
> # NAT out (
interface on the same network where my Doman Controller is.
>>
>> To be more clearer, my Domain IP is 10.0.1.x/24 and my PF Management
>> Interface is 10.0.1.y/24. After I made that changed , everything works just
>> fine. Hope it will help you.
>>
>> Maile.
>>
s 10.0.1.y/24. After I made that changed , everything works just
> fine. Hope it will help you.
>
> Maile.
>
>
>
> *From:* Geert Heremans via PacketFence-users <
> packetfence-users@lists.sourceforge.net>
> *Sent:* Wednesday, 7 October 2020 9:59 AM
> *To:*
d to keep the OU default.
>
> Thanks.
> ------
> *From:* Geert Heremans via PacketFence-users <
> packetfence-users@lists.sourceforge.net>
> *Sent:* Tuesday, October 6, 2020 4:58 PM
> *To:* packetfence-users@lists.sourceforge.net <
> packetfence-
Hello everyone
I'm trying to get my PF10 server to join my domain. The PF hostname is
hades and my domain is sintcordula.be.
Trying to join from the gui false because no DC is found.
However when I try to join the server using the shell it works. The
computer account is created in the domain.
Hello,
I'm using PF for the first year on our school. Each student is part of an
AD GROUP and some of these groups are added tot the AD group that's being
used in PF to allow internet access.
These users can then access the WIFI and register their device.
I've noticed that when I remove a group
gt; a fix has been pushed in the maintenance branch.
>
> you can do a pf-maint.pl to apply the fixes.
>
> Let me know if it helps.
>
> Regards
>
> Fabrice
>
>
>
> Le 2018-10-01 à 08:02, Geert Heremans via PacketFence-users a écrit :
>
> Hi,
>
> I dived a littl
nk the bandwidth numbers are only meaningful when you use
>> packetfence inline.
>>
>>
>>
>> Regards,
>>
>>
>>
>> Peter Truax
>>
>> St. Martin’s University
>>
>>
>>
>> *From:* Geert Heremans via PacketFence-u
ers@lists.sourceforge.net>:
> Geert,
>
>
>
> I think the bandwidth numbers are only meaningful when you use packetfence
> inline.
>
>
>
> Regards,
>
>
>
> Peter Truax
>
> St. Martin’s University
>
>
>
> *From:* Geert Heremans via PacketFence-users <
&g
Hello,
We are now running PF for one month in our school and so far we are doing
great. Besides some small problems with users being confused about SSL
certificate warnings I really can't complain.
I'm running PF Out-Of-Band with a Ubuiqiti Unifi Wifi setup and 802.1X
authentication. I've also
Hello Everyone,
I'm tryon to setup an out-of-band deployment in my schools network. I've
joined PF to the domain, Created, assigned the domain to the default REALM
and added Authentication Source.
When authenticating against my Unifi AP's everything works splendid. I get
assigned the correct
issing-version.sql where
> missing-version is the release number.
>
> And replay just the part where it insert in the pf_version table.
>
> Regards
>
> Fabrice
>
>
>
> Le 2018-08-08 à 06:16, Geert Heremans via PacketFence-users a écrit :
>
> I've upgrade my PF in
I've upgrade my PF installation to version 8.1.0
Altough I've run the /usr/local/pf/db/upgrade-8.0.0-8.1.0.sql script (and
rerunning it gives an error indicating it's at version 8.1.0=> PREVIOUS
VERSION 8.1.0 DOES NOT MATCH 8.0.0
) PF is unable to start:
FATAL - The PacketFence database schema
s@lists.sourceforge.net>:
>
>> Hello Geert,
>>
>> since wpa2-entreprise already authenticate the user (AD credential) then
>> you can auto register device in this case and no need to have the captive
>> portal.
>>
>> Regards
>>
>> Fabrice
>&
reprise already authenticate the user (AD credential) then
> you can auto register device in this case and no need to have the captive
> portal.
>
> Regards
>
> Fabrice
>
> Le 2018-06-14 à 02:52, Geert Heremans via PacketFence-users a écrit :
>
> Hello everyone,
>
> I'm
Hello everyone,
I'm wondering if it's possible to setup my PF system so that I don't need a
unsecured SSID with a Captive Portal behind it to allow the users to
register their device.
In my ideal setup I would have only one SSID with WPA2-Enterprise
authentication. When one fo my domain users
Hi Timothy,
I'm also running unifi at my school and I'm trying to implement PF. Could
you help me with the following questions:
1. In the switches menu I've added the unifi controller IP and assigned
the Unifi Profile that's available in PF. This seem correct.
1. I've also added the
28 matches
Mail list logo