Re: [PacketFence-users] Captive Portal Issues

Do you have the logs related to this radius request ? (packetfence.log) It looks to me that you are doing 802.1x + web auth. For the ssid BlueDogRV, just configure it like https://packetfence.org/doc/PacketFence_Network_Devices_Configuration_Guide.html#_all_aruba_os (Secure SSID and not like

Re: [PacketFence-users] Captive Portal Issues

User-Name = "host/ta-00614.BluedogRV.lan" NAS-IP-Address = 192.168.100.217 NAS-Port = 0 Service-Type = Framed-User Framed-MTU = 1100 State = 0x2880f3b42988e97dfdf00d5089857e6a Called-Station-Id = "f0:5c:19:c2:13:96" Calling-Station-Id = "9c:30:5b:1c:06:4b" NAS-Identifier = "Aruba_Wireless"

Re: [PacketFence-users] Captive Portal Issues

Ok so first there is no ssid sent in the radius request so you can't use a filter based on the ssid. So what you can do (removed the ssid): [Wireless_EAP] filter_match_style=all description=Wireless_EAP sources=tacos-MachineAuth filter=connection_type:Wireless-802.11-EAP autoregister=enabled

Re: [PacketFence-users] 9.3.0 - SSO PaloAlto doesn't work

Please check if you PA doesnt filter packets. Oryginalna wiadomość Od: Przemyslaw Zoltowski via PacketFence-users Data: 11.03.2020 17:02 (GMT+01:00) Do: packetfence-users@lists.sourceforge.net DW: Przemyslaw Zoltowski Temat: [PacketFence-users] 9.3.0 - SSO PaloAlto doesn't

Re: [PacketFence-users] 9.3.0 - SSO PaloAlto doesn't work

I?ve added rules and communication is working - using curl I have generate API key from PacketFence server. Problem is I don?t see outgoing packets on interface to my PaloAlto firewall. W dniu ?r., 11.03.2020 o 18:02 Tomasz Karczewski OLMAN napisa?(a):Please check if you PA doesnt filter

Re: [PacketFence-users] Captive Portal Issues

Okay so this is the one from today. get's matched to the Ethernet profile and denied. Mar 11 08:57:01 NAC1 packetfence_httpd.aaa: httpd.aaa(9641) INFO: [mac:00:24:d7:90:be:84] handling radius autz request: from switch_ip => (192.168.100.216), connection_type => Wireless-802.11-EAP,switch_mac =>

Re: [PacketFence-users] Captive Portal Issues

Here is the portal debug log for the our Aruba IAP's. first log is redirect URL set to https://PACKETFENCESERVER/. Second is set to https://PACKETFENCESERVER/Aruba::Instant_Access NAC1 packetfence_httpd.portal: httpd.portal(1228) DEBUG: [mac:30:24:32:a3:ef:ad] hitting handler with URI

[PacketFence-users] 9.3.0 - SSO PaloAlto doesn't work

Hi, I've configured SSO according to documentation. I also make sure that PacketFence has access to PaloAlto firewall. In pfsso.log I can see that SSO is operational and sends info to PA: Mar 11 14:13:26 packetfence pfsso[2238]: t=2020-03-11T14:13:26+0100 lvl=info msg="Processing SSO Start"

Re: [PacketFence-users] Captive Portal Issues

Yep I'm scrubbing them now. It's also matching clients connecting on wireless-eap to wired-eap On Tue, Mar 10, 2020, 4:53 PM Durand fabrice via PacketFence-users < packetfence-users@lists.sourceforge.net> wrote: > Hello, > > can you provide the packetfence.log file and the profiles.conf file ? >

Re: [PacketFence-users] Aruba AP and VLAN Mapping - Addition

Thanks for the information. Could you show me the conf/authentication.conf and conf/profiles.conf ? Thanks, Ludovic Zammit lzam...@inverse.ca :: +1.514.447.4918 (x145) :: www.inverse.ca Inverse inc. :: Leaders behind SOGo

Re: [PacketFence-users] Aruba AP and VLAN Mapping

Are you using the correct distinguished name of the group? On Tue, Mar 10, 2020 at 2:04 PM Christian Sudec via PacketFence-users < packetfence-users@lists.sourceforge.net> wrote: > Hi, here the logs: > > Mar 10 12:10:21 ippf packetfence_httpd.aaa: httpd.aaa(848) INFO: > [mac:02:de:ad:04:be:ef]