[PacketFence-users] Bad Request 400 on Packetfence PKI

Hello Guys, I get a Bad Request 400 when I try accessing https://172.16.100.2:9393/ i.e. the PKI server interface on PF 7.2. Any idea what might be wrong? Regards, Kehinde -- Check out the vibrant tech community on one

Re: [PacketFence-users] Error communicatin with Nessus

, Fabrice Durand via PacketFence-users < packetfence-users@lists.sourceforge.net> wrote: > Hello Akala, > > if nessus run on the same server then try 127.0.0.1 for the server ip. > > Also what return : netstat -nlp | grep 8834 > > Regards > > Fabrice > > >

Re: [PacketFence-users] Possible having same registration VLAN on GUEST and STAFF SSIDs??

-28 à 12:21, Akala Kehinde via PacketFence-users a écrit : > > Hello guys, > > Below is my AP (Cisco 1242 AG) configuration in an OOB setup: > > When I tried configuring SSID GUEST to be in same initial VLAN 98 as > STAFF, I get an error. I am not sure if it's possible to hav

Re: [PacketFence-users] Error communicatin with Nessus

0.0.1 for the server ip. >> >> Also what return : netstat -nlp | grep 8834 >> >> Regards >> >> Fabrice >> >> >> >> Le 2017-07-28 à 12:09, Akala Kehinde via PacketFence-users a écrit : >> >> Just FYI, the Nessus server runs o

Re: [PacketFence-users] PIN confirmation not received via SMS on phone

Hello guys, Below is my config: [MAWOH_SMS] create_local_account=no set_access_level_action= sms_carriers=100113 local_account_logins=0 description=SMS-based registration for Mawoh Guests type=SMS Looks right, but don't know what's wrong.. Any help is appreciated.. Thanks Regards, Kehinde

[PacketFence-users] PIN confirmation not received via SMS on phone

Hello guys, Need your help urgently on this one. I tried testing the SMS external authentication source but does not work. My mobile carrier's SMS gateway is in the sms_carrier database but I don't receive PIN confirmation to my phone when I test. Any ideas what the problem may be.

Re: [PacketFence-users] Caught exception in captiveportal... when choosing sms method

Hello Loius/Rossing, I am trying to make the SMS Auth work as well, but in my case, I am not receiving any PIN confirmations on my mobile phone. Could this be a problem with the mobile carrier, in my case T-Mobile Germany. The config looks right, but dont"t know what's wrong.. [MAWOH_SMS]

Re: [PacketFence-users] Error communicatin with Nessus

Hi Christian, Is the ssl config change you made in the nessus6.pm file necessary, because I only made the change in the REST.pm file, and I could connect. But the issue I am having is with the "scanner name doesn't exist" even after settign as "Local Scanner". Can you send me your nessu6.pm file.

Re: [PacketFence-users] Error communicatin with Nessus

Hi Cristian, Took me some time too to have the WMI scan running, but even only works for pre-reg. Failed for Reg and Post-reg scans.Had any success with that? Regards, Kehinde On Thu, Aug 10, 2017 at 2:31 PM, Cristian Mammoli via PacketFence-users < packetfence-users@lists.sourceforge.net>

Re: [PacketFence-users] Error communicatin with Nessus

I expect id 100024 to be triggered when in Production vlan but it doesn't. On 11 Aug 2017 2:25 PM, "Akala Kehinde" wrote: > Ok. But in my case, I see no violation 100024 triggered even when there is > a violation. Only 100025 tiggers. > And also what ID is triggered on

Re: [PacketFence-users] Android wireless provisioning error

HI guys, Any thoughts on this? Regards, Kehinde On Tue, Aug 8, 2017 at 7:44 PM, Akala Kehinde wrote: > Hello guys, > > I get this error while trying to do Android wireless provisioning, when I > click on the configure button on the PF android app: > > Aug 8 19:42:38

Re: [PacketFence-users] Error communicatin with Nessus

Hi Cristian, The 100024 id doesn't trigger. No logs, nothin. Only the 100025 does. Just to be sure of the Reg. and Post Reg scan operations, the Reg.scan works just when authenticating and the Post Reg. after authentication. And does the violation (the wmi violation itself) self close when you

Re: [PacketFence-users] Android wireless provisioning error

llo Akala, > > can you send me your profiles.conf and portal_modules.conf and > provisioning.conf ? > > Regards > > Fabrice > > > > Le 2017-08-11 à 07:15, Akala Kehinde via PacketFence-users a écrit : > > HI guys, > > Any thoughts on this? > >

Re: [PacketFence-users] Android wireless provisioning error

AFF_LOGIN_POLICY > type=Root > description=ROOT MODULE FOR MAWOH STAFF > > [ROOT_MAWOH_GUEST_MODULE] > modules=MAWOH_GUEST_REG_POLICY,default_provisioning_policy > type=Root > description=ROOT MODULE FOR MAWOH GUEST > > Regards, > Kehinde > > On Fri, Aug 11, 2017 at

Re: [PacketFence-users] Error communicatin with Nessus

i, Aug 11, 2017 at 8:47 PM, jrouzier via PacketFence-users < packetfence-users@lists.sourceforge.net> wrote: > Kehinde, > > I am looking into this. By next tuesday I should have a good solution. > > Thanks > > James > > On 2017-07-17 8:58 AM, Akala Kehinde via PacketFe

[PacketFence-users] Provisioner Setup necessary for hidden and non-hidden SSIDs??

Hello guys, First would like to thank the Packetfence team for the great work done so far and the continuous effort put in to make the solution even better. I have a quick question regarding the Provisioner configuration and how to set it up with mobile phones. Assuming SSID is not hidden,

[PacketFence-users] rsyslog.conf and syslog-ng.conf files not found on PF 7.x

Hello guys, I'm trying to adjust the syslog-ng.conf and ryslog.conf files for the logs reception for Suricata MD5 and Snort setup, but I can't find these files in PF. I can only find the packefence.conf and listen.conf files in the rsyslog.d folder. Is it save to add these lines for Suricata in

[PacketFence-users] Error communicatin with Nessus

Hallo Guys, Quick one.. I get this error when PF tries triggering a violation: Checked line 96 and seems it's an error with the creds, but creds seems right. Or is the creds not supposed to be that on the Nessus server? Jul 8 13:57:58 pfence pfqueue: pfqueue(10450) INFO:

Re: [PacketFence-users] Provisioner Setup necessary for hidden and non-hidden SSIDs??

-Entreprise PEAP not hidden, no I don't think it is necessary. The use is also that it avoid users mistakes while configuring it. Let us know if that help. Thanks On 07/17/2017 08:57 AM, Akala Kehinde via PacketFence-users wrote: Hello guys, First would like to thank the Packetfence team for the gr

Re: [PacketFence-users] Provisioner Setup necessary for hidden and non-hidden SSIDs??

ecessary. The use is also that it avoid users mistakes while configuring it. Let us know if that help. Thanks On 07/17/2017 08:57 AM, Akala Kehinde via PacketFence-users wrote: Hello guys, First would like to thank the Packetfence team for the great work done so far and the continuous effort p

[PacketFence-users] DNS Passthrough not workin in OOB setup

Hello guys, Got a quick question regarding the passthrough setup. I have enabled dns passthrough and configured some websites allowed for passthrough. I have an internal dns server setup and configured on PF. And also a firewall that allows access to the internet for the users by assigning dhcp

[PacketFence-users] No suricata.yaml file present in PF 7.x

Hallo guys, The suricata.yaml file is missing in PF7.x. I'm trying to do a Suricata setup with PF. I have installed Suricata on PF on a different location on PF. Now what IP addresses be specified in the $HOME-NET and $EXTERNAL variables. And also what interface will PF listen on for alerts, the

Re: [PacketFence-users] Error communicatin with Nessus

Just FYI, the Nessus server runs on the PF server. Regards, Kehinde On Fri, Jul 28, 2017 at 5:53 PM, Akala Kehinde wrote: > Hallo Guys, > > Quick one.. > I get this error when PF tries triggering a violation: > > Checked line 96 and seems it's an error with the creds,

Re: [PacketFence-users] Possible having same registration VLAN on GUEST and STAFF SSIDs??

Or is it possible to have 2 different registration VLANs?? Regards, Kehinde On Fri, Jul 28, 2017 at 6:21 PM, Akala Kehinde wrote: > Hello guys, > > Below is my AP (Cisco 1242 AG) configuration in an OOB setup: > > When I tried configuring SSID GUEST to be in same

Re: [PacketFence-users] Bad Request 400 on Packetfence PKI

> >> and that iptables is allowing it: >> >> iptables -S | grep 9393 >> >> Thanks >> >> On 07/28/2017 06:53 AM, Akala Kehinde via PacketFence-users wrote: >> >> Hello Guys, >> >> I get a Bad

Re: [PacketFence-users] Bad Request 400 on Packetfence PKI

ed, > > ps -edf | grep packetfence-pki > > netstat -nlp | grep 9393 > > and that iptables is allowing it: > > iptables -S | grep 9393 > > Thanks > > On 07/28/2017 06:53 AM, Akala Kehinde via PacketFence-users wrote: > > Hello Guys, > > I get a Bad Re

[PacketFence-users] Error communicatin with Nessus

Hallo Guys, Quick one.. I get this error when PF tries triggering a violation: Checked line 96 and seems it's an error with the creds, but creds is right. Or is the creds not supposed to be that on the Nessus server? Jul 8 13:57:58 pfence pfqueue: pfqueue(10450) INFO: [mac:00:50:ff:25:ce:00]

[PacketFence-users] Possible having same registration VLAN on GUEST and STAFF SSIDs??

Hello guys, Below is my AP (Cisco 1242 AG) configuration in an OOB setup: When I tried configuring SSID GUEST to be in same initial VLAN 98 as STAFF, I get an error. I am not sure if it's possible to have same registartion VLAN i.e. 98 tied to different VLAN overrides i.e. STAFF and GUEST. : :

Re: [PacketFence-users] Bad Request 400 on Packetfence PKI

abrice Durand via PacketFence-users < packetfence-users@lists.sourceforge.net> wrote: > Hello Akala, > > can you check what you have in the packetfence pki logs ? > > /usr/local/packetfence-pki/logs > > Regards > > Fabrice > > > > Le 2017-07-28 à 11

[PacketFence-users] WMI setup for "Scan before registration" works but not Reg and Post-Reg "Scans"

Hello guys, Got an existing OOB setup. The WMI setup for "Scan before registration" works but "Scan on registration" and "Scan after registration" doesn't work. There were no logs or anything for the latter 2 as the a Post-Reg violation 124 din't even trigger. Any clues guys.. Also do you

[PacketFence-users] Android wireless provisioning error

Hello guys, I get this error while trying to do Android wireless provisioning, when I click on the configure button on the PF android app: Aug 8 19:42:38 egelsbach packetfence_httpd.portal: httpd.portal(9458) INFO: [mac:f0:d7:aa:87:a6:ad] User default has authenticated on the portal.

[PacketFence-users] PF just refuses to join AD domain??

Hello guys, I get this error when trying to join PF to an Active Directory Server: [root@pfence pf]# tail -f /chroots/MYDOMAIN/var/log/sambaMYDOMAIN/log.winbindd [2017/08/23 02:20:34.196193, 0] ../source3/winbindd/winbindd_util.c:869(init_domain_list) Could not fetch our SID - did we join?

Re: [PacketFence-users] PF just refuses to join AD domain??

gt; what happen if you do that: > > chroot /chroots/MYDOMAIN > > wbinfo -u > > wbinfo -g > > if there is no usernames or groups displayed then try : > > dns_name=TESTMAWOH.DE > and rejoin > > Regards > Fabrice > > > Le 2017-08-22 à 22:21, Akala Kehinde via Pa

Re: [PacketFence-users] Multiple Nessus scan policies possible on PF?

brice > > > > Le 2017-08-18 à 15:44, Akala Kehinde via PacketFence-users a écrit : > > Hello guys. > > Will like to know if it's possible to have more than 1 nessus scan policy > configured on PF. > > Regards, > Kehinde > > > --

Re: [PacketFence-users] PF just refuses to join AD domain??

nd fabrice via PacketFence-users < > packetfence-users@lists.sourceforge.net> wrote: > >> Hello Akala, >> >> what happen if you do that: >> >> chroot /chroots/MYDOMAIN >> >> wbinfo -u >> >> wbinfo -g >> >> if there is no usernames

Re: [PacketFence-users] PF just refuses to join AD domain??

> > On Wed, Aug 23, 2017 at 4:44 AM, Durand fabrice via PacketFence-users < > packetfence-users@lists.sourceforge.net> wrote: > >> Hello Akala, >> >> what happen if you do that: >> >> chroot /chroots/MYDOMAIN >> >> wbinfo -u >> >> wbinfo

[PacketFence-users] Nessus Scan fails!!

Hi guys, Anyone got a Nessus scan configuration up and running? Followed the steps in the admin guide, but I get the following error when user connects: Jun 19 00:20:12 pfence pfqueue: pfqueue(7516) INFO: [mac:00:50:ff:b3:7c:00] Instantiate profile SNS (pf::Connection::ProfileFactory::_from

[PacketFence-users] Fwd: WMI prereg and reg scans fail when user connects

Hallo Fabrice, Below is the logs as requested.. Regards, Kehinde -- Forwarded message -- From: Akala Kehinde Date: Wed, Jun 14, 2017 at 6:22 PM Subject: Re: WMI prereg and reg scans fail when user connects To: Fabrice Durand Cc:

[PacketFence-users] VLAN Filter for MAB devices

Hallo, Hallo guys, Want to knw if it's possible to do MAB authentication for non-manageable devices like printers. Don't want to do Hybrid setup, prefer OOB setup instead. Or is it possible to define a VLAN filter that auto-registers these devices and assigns them a registered role? Something

Re: [PacketFence-users] Sponsor email validation

Hello Luis, Your PF server needs to be reachable over the internet. Regards, Kehinde On Wed, Aug 30, 2017 at 3:49 PM, Luís Torres via PacketFence-users < packetfence-users@lists.sourceforge.net> wrote: > Hello, > > > > Im rookie on packetfence configuration. I facing a "problem" regarding the

Re: [PacketFence-users] PF just refuses to join AD domain??

e: >>>>>>>> >>>>>>>>> Hello Akala, >>>>>>>>> >>>>>>>>> does ip_forward is enable ? >>>>>>>>> >>>>>>>>> does the time of the packetfence serve

Re: [PacketFence-users] PF just refuses to join AD domain??

>>>>> Regards >>>>>>>> >>>>>>>> Fabrice >>>>>>>> >>>>>>>> >>>>>>>> >>>>>>>> Le 2017-08-23 à 02:38, Akala Kehinde a écrit : >>>>

[PacketFence-users] Credentials needed for mac-address method of wireless authentication??

Hello all. I have this configured for a 802.1x Wireless Setup on a Cisco Aironet AP. dot11 ssid GUEST vlan 6 backup guest authentication open mac-address mac_methods mbssid guest-mode I get a prompt to enter the username and password. What credentials do I enter? And do I need to get a

[PacketFence-users] Multiple Nessus scan policies possible on PF?

Hello guys. Will like to know if it's possible to have more than 1 nessus scan policy configured on PF. Regards, Kehinde -- Check out the vibrant tech community on one of the world's most engaging tech sites,

Re: [PacketFence-users] How to update PF-zen 7.1.0?

Hi Rokkhan, You can follow the guide provided by Inverse. https://github.com/inverse-inc/packetfence/blob/stable/UPGRADE.asciidoc Regards, Kehinde On Thu, Aug 24, 2017 at 4:36 PM, Rokkhan via PacketFence-users < packetfence-users@lists.sourceforge.net> wrote: > Hi, > > I have recently

[PacketFence-users] HTTP 503 error, httpd.dispatcher service refuses to start!!

HI guys, Quick one. I just suddenly get this error when trying to connect on Reg VLAN. User gets a 503 error message when trying to redirect via captive portal: See some logs below: *httpd.dispatcher|not started* */var/log/messages* Aug 28 18:10:07 egelsbach.testmawoh.de haproxy[3314]:

Re: [PacketFence-users] Code fetched from PF gitub leads to HTTP 503 error, httpd.dispatcher service refusing to start.. Urgent please!!

: > Hello Akala, > > it looks that it's an issue with proxypassthrough configuration. > > Check if this command return the correct config for > fencing.proxy_passthroughs > > Regards > > Fabrice > > > > Le 2017-08-28 à 16:36, Akala Kehinde via PacketFence-user

Re: [PacketFence-users] Code fetched from PF gitub leads to HTTP 503 error, httpd.dispatcher service refusing to start.. Urgent please!!

On 28 Aug 2017 8:10 PM, "Akala Kehinde" wrote: HI guys, Quick one. I just suddenly get this error when trying to connect on Reg VLAN. User gets a 503 error message when trying to redirect via captive portal: Seems some code was fetched from PF gitub and in the process

Re: [PacketFence-users] PF just refuses to join AD domain??

; could not obtain winbind domain name! >>>> checking the NETLOGON for domain[] dc connection to "" failed >>>> failed to call wbcPingDc: WBC_ERR_WINBIND_NOT_AVAILABLE >>>> [root@pfence pf]# chroot /chroots/MYDOMAIN wbinfo -p >>>> Ping to

Re: [PacketFence-users] PF just refuses to join AD domain??

T_AVAILABLE >>> [root@pfence pf]# chroot /chroots/MYDOMAIN wbinfo -p >>> Ping to winbindd failed >>> could not ping winbindd! >>> [root@pfence pf]# >>> >>> >>> Tested with TESTMAWOH.DE but still cannot join.. >>> It's driving me nuts:

Re: [PacketFence-users] PF just refuses to join AD domain??

>> Tested with TESTMAWOH.DE but still cannot join.. >> It's driving me nuts:) >> >> Regards, >> Kehinde >> >> On Wed, Aug 23, 2017 at 4:44 AM, Durand fabrice via PacketFence-users < >> packetfence-users@lists.sourceforge.net> wrote: >> &

Re: [PacketFence-users] PF just refuses to join AD domain??

tain winbind domain name! >>>>>> failed to call wbcListGroups: WBC_ERR_WINBIND_NOT_AVAILABLE >>>>>> Error looking up domain groups >>>>>> [root@pfence pf]# chroot /chroots/MYDOMAIN wbinfo -t >>>>>> could not obtain winbind interface details: &

Re: [PacketFence-users] PacketFence PKI

Hi Max, Yea, I tested it and works fine. You can follow the steps in the PF PKI guide. Regards, Kehinde On Fri, Aug 18, 2017 at 6:02 PM, Max McGrath via PacketFence-users < packetfence-users@lists.sourceforge.net> wrote: > Is anybody currently using PacketFence's PKI? > > I'm curious how well

Re: [PacketFence-users] PF just refuses to join AD domain??

tfence >>>>>>>>> net.ipv4.ip_forward = 1 >>>>>>>>> >>>>>>>>> Checked timing already on both servers, it"s d same. >>>>>>>>> >>>>>>>>> Regards, >>>>&g

Re: [PacketFence-users] Multiple Nessus scan policies possible on PF?

Regards, > Kehinde > > On Wed, Aug 23, 2017 at 4:47 AM, Durand fabrice via PacketFence-users < > packetfence-users@lists.sourceforge.net> wrote: > >> Hello Akala, >> >> yes, based on the os. >> >> Regards

Re: [PacketFence-users] Code fetched from PF gitub leads to HTTP 503 error, httpd.dispatcher service refusing to start.. Urgent please!!

-08-28 à 17:05, Akala Kehinde a écrit : >> >> Hello Fabrice,. >> >> Thanks always for your quick responses. Funny enough, I never tampered >> with the proxy-passthrough configuration. >> >> Which command should run? >> >> On 28 Aug 2017 10:52 PM, &q

Re: [PacketFence-users] Code fetched from PF gitub leads to HTTP 503 error, httpd.dispatcher service refusing to start.. Urgent please!!

ence-users" < > packetfence-users@lists.sourceforge.net> wrote: > >> Hello Akala, >> >> it looks that it's an issue with proxypassthrough configuration. >> >> Check if this command return the correct config for >> fencing.proxy_passthroughs >

Re: [PacketFence-users] Service Disappeared

Hi Nathan, Try first: systemctl start packetfence-config or service packetfence-config start and later: /usr/local/pf/bin/pfcmd service pf start Regards, Kehinde On Tue, Sep 26, 2017 at 3:16 PM, Nathan, Josh via PacketFence-users < packetfence-users@lists.sourceforge.net> wrote: > OK. That