it worked !!
Le 2017-10-17 à 12:44, Luca Messori a écrit :
>
> I have attached the log file using this command:
>
>
>
> /usr/sbin/radiusd -d /usr/local/pf/raddb -n auth -fm –X
>
>
>
> Is this good for you?
>
>
>
> Kind regards
>
>
>
> */Luca Messori/*
>
> _
>
>
It looks that you already run freeradius in debug mode. ( -X )
do: pfcmd service radiusd restart
Then raddebug -f /usr/local/pf/var/run/radiusd.sock -t 3000
Regards
Fabrice
Le 2017-10-17 à 12:31, Luca Messori a écrit :
>
> Hi Fabrice,
>
> I have this error using raddebug:
>
>
>
>
Hi Fabrice,
I have this error using raddebug:
[root@PacketFence-ZEN ~]# raddebug -f /usr/local/pf/var/run/radiusd.sock -t 3000
ERROR: Cannot redirect debug logs to a file when already in debugging mode.
ERROR: Cannot redirect debug logs to a file when already in debugging mode.
cp: missing
Hello all,
I've been working with guest email activation on packetfence 6.5 and
unfortunately the most part of my guests doesn't activate the first time
they signup.
The second try, however, it might happen that they click the wrong
activation link, (the previous message's one). It appears a
Hello Luca,
pftest will use ldap bind to authenticate but freeradius will use ntlm_auth.
Can you do this on your server:
raddebug -f /usr/local/pf/var/run/radiusd.sock -t 3000
And try to authenticate, you will be able to see why it failed to
authenticate. (you can paste the result).
Regards
Did you assign the portal module on the connection profile ?
Regards
Fabrice
Le 2017-10-17 à 10:40, Nicolay Rytchev via PacketFence-users a écrit :
> Yes, I tried it. Please look screenshots below.
> But I still see all possible authentication methods on my Portal`s page:
>
>
> Встроенное
Hello Brian,
did you try to use the same acl that we have in the documentation ?
https://packetfence.org/doc/PacketFence_Network_Devices_Configuration_Guide.html#_wireless_lan_controller_wlc_web_auth
This acl is more a trigger than a real acl.
Also can you paste a radius answer when you try to
Hi all,
I'm trying to configure authentication against Active Directory on my company
network.
I have already joined the PF virtual machine to my domain.
I think that I have correctly configured authentication because the pftest
command return a successful authentication:
Yes, I tried it. Please look screenshots below.
But I still see all possible authentication methods on my Portal`s page:
[image: Встроенное изображение 3][image: Встроенное изображение 2][image:
Встроенное изображение 1]
2017-10-17 15:56 GMT+02:00 Fabrice Durand via PacketFence-users <
Hi Fabrice,
Here is a screenshot of the ACL: https://imgur.com/a/Br66F
As mentioned I can go to the portal page if I input the URL manually.
However going to google.com doesn't forward the traffic. This is when I
use a production DNS server.
I've also confirmed that NAC State is "Radius
winbind does run, and if I execute the command with the correct values from the
debug log the command runs successfully.
I have noticed that if I look at the process list that the command sometimes
runs as just /usr/local/pf/bin/ntlm_auth_wrapper without the
/usr/bin/sudo /usr/sbin/chroot
Hello Brian,
the dns must be a production one.
The wlc is suppose to intercept the http/https traffic and forward you
to the captive portal.
So it can be an issue with the ACL (i am not sure since you are able to
hit it), or a maybe you didn't enabled Radius NAC in the ssid config.
Regards
Hi,
Sorry for the late delay, I sorted out the problem simply by changing
the DHCP server from the WLC to my router. I also changed DNS servers to
my main packetfence management interface which seemed to be the possible
issue. I'll have to test back with the DNS server as the portal IP.
Hello Fabrice,
It is working now.
Thank you.
2017-10-13 16:02 GMT+02:00 Durand fabrice via PacketFence-users <
packetfence-users@lists.sourceforge.net>:
> Hello Nicolay,
>
> first you need to enable "External portal enforcement" in the switch
> config (pf side).
>
> And after that i will
Actually I'm wrong, although I changed the DNS server to point to the
portal page I do now get redirected, however after registration nothing
works as DNS is still pointing to the portal IP and it answers every
query with the portal page.
On 2017-10-12 08:41 AM, Fabrice Durand wrote:
Hello List,
I want to customize by my own Captive portal but without success.
I would like remove any source in my Portal Profile except the sms
authentication.
How can I do that ?
Thank you in advance.
--
Check out the
Hello Hubert,
you have a tab "Files" in Connection Profiles and Pages.
Feel freer to edit the html pages.
Also there is locales in conf/locale/en/LC_MESSAGES you probably have
to edit too.
Do that after you edited the locales:
for TRANSLATION in de en es fr he_IL it nl pl_PL pt_BR; do
Hello Yan,
it looks that you didn't imported fingerbank into mysql.
Go in Configuration -> Compliance -> Fingerbank Profiling -> General
settings then in Action "Initialize MySQL database".
Regards
Fabrice
Le 2017-10-17 ?? 03:19, Yan via PacketFence-users a ??crit?0?2:
> Hi dear users,
>
>
Thanks! That's worlds better!
Joshua Nathan
*IT Technician*
Black Forest Academy
p: +49 (0) 7626 9161 630 m: +49 (0) 152 3452 0056
a:
w: Hammersteiner Straße 50, 79400 Kandern
bfacademy.de
On Tue, Oct 17, 2017 at 5:21 AM, Fabrice Durand via PacketFence-users <
Hello Joshua,
it's probably the radacct/radacct_log/locationlog table.
Do a: select count(*) from radacct; (on each tables) you probably have a
huge table.
So just do a truncate radacct/radacct_log/locationlog and it should be ok.
Btw in the new packetfence version we limit that.
Regards
Hi dear users,
We are using PF V7.2 in our office. We want to use PF to recognize mobile
devices from computers when connecting wireless ssid. It seems PF define
device's type via DHCP fingerprint. Our packetfence.log keeps logging "pfqueue:
pfqueue(1341) WARN: [mac:ff:ee:dd:cc:bb:aa] Unable
I ran into that as well. What fixed it for me, is that there are two
values in the source with default numbers. The port and the timeout or
whatever, I think. You need to FILL IN those values. Leaving them
auto-completed didn't work for me for some reason. I just entered in the
same numbers
So, we have a PacketFence 6.0.1 installation, and it's been plugging along
for almost two years now. However, its database has gotten REALLY slow.
The PacketFence admin page actually times out when trying to load the Node
list (only 25 entries per page selected). The server isn't being stressed
23 matches
Mail list logo