Hi Guys,
I'm planning to enable snort on packetfence but when i look for the snort
conf in packetfence on the location /usr/local/pf/var/conf ... i couldn't
find the snort.conf anywhere can you please help...
OS: CentOS7 64bit
Packetfence : yum installed
Fabrice,
my bad..., the crt and key was not correctly exported.
Followed this procudure from de .pfx and it worked like you said:
ake the file you exported (e.g. certname.pfx) and copy it to a system
where you have OpenSSL installed. Note: the *.pfx file is in PKCS#12
format and includes
On 3-10-2017 15:11, Fabrice Durand via PacketFence-users wrote:
you can create a connection profile based on the connection type
Ethernet-EAP and activate autoregistration on it.
Perfect!
Worked like a charm! :-)
Thanks Fabrice
did directly from a pfx
_OPENSSL PKCS12 -IN INFRA.PFX -OUT
SERVER.PEM_
no empty lines.
But using crt and key > pem
it as
empty lines
_SSL# CAT INFRA.CRT INFRA.KEY > INFRA.PEM_
LT
Em
2017-10-03 14:54, Fabrice Durand via PacketFence-users escreveu:
> You
probably did a mistake
You probably did a mistake with the concatenated certificate.
Is there any empty lines in the file ?
Le 2017-10-03 à 09:48, Luís Torres via PacketFence-users a écrit :
>
> Hi Fabrice,
>
>
>
> Just did that, restarted the haproxy but the result was :
>
>
>
> ERROR pfcmd.pl(50729):
>
Hi Fabrice,
Just did that, restarted the haproxy but the result
was :
ERROR pfcmd.pl(50729):
pf::services::manager::haproxy=HASH(0xade6b0)->name died or has failed
to start (pf::services::manager::postStartCleanup)
the service HAproxy
wont start
regards
LT
Em 2017-10-03 14:13,
In fact haproxy terminate the ssl tunnel so you don't have to change the
ssl-certificates.conf file.
This file is just use for the admin interface now and not the portal
anymore.
So just do that: (MyCERT.crt and MyPRIVKEY.key are your certificate files)
cat conf/ssl/MyCERT.crt
Hello Mj,
you can create a connection profile based on the connection type
Ethernet-EAP and activate autoregistration on it.
Regards
Fabrice
Le 2017-10-03 à 05:37, lists via PacketFence-users a écrit :
> Hi,
>
> We have an pf-inline wifi-segment with a captive portal, and also a
>
thank you Fabrice,
The ssl-certificates.conf should be like this
as well? :
_SSLCERTIFICATECHAINFILE
%%INSTALL_DIR%%/CONF/SSL/SERVER.PEM_
cheers
Em 2017-10-02 23:49,
Durand fabrice via PacketFence-users escreveu:
> Hello Luís,
>
> you
need to concatenate the certificates like that:
Hi,
We have an pf-inline wifi-segment with a captive portal, and also a
pf-out-of-band wired network, where we have enabled 802.1x / radius
authentication for our windows workstations.
We authenticate using the workstation account first, and then change to
the logged-in user account. This
10 matches
Mail list logo
