which hashing
function to apply (or not) to the passwords.
We'd have to carefully look at the cost of doing that in terms of effort and
maintenance.
Ideas and comments are welcome.
Keep 'em coming.
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866
eRADIUS related issues fixed in versions between 4.0.1 and
4.0.5-2.
You might be experiencing one of those.
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence
(www.packetfence.o
Is this a patched install by any chance?
"Bulanda, Dave G" wrote:
>--
>Learn the latest--Visual Studio 2012, SharePoint 2013, SQL 2012, more!
>Discover the easy way to master current and previous Microsoft technologies
>
# apt-get update
To update the list of available packages.
Then run
# apt-get upgrade
Pay close attention to the list of packages to be upgraded.
If packetfence is not marked to be upgraded you may have to manually mark it or
otherwise resolve the issue.
Hope that helps.
Regards,
--
Louis
.
As with all upgrades on a production system, make sure you have backups and try
to choose a time and method that will have the least impact on your users.
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind
Hi Dave,
Have you checked for errors in logs/webservices_errors_log and
logs/webservices_access_log ?
The packetfence module of FreeRADIUS calls on this webservice. The issue could
be related to that.
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1
Hi Fletcher.
In mysql, what is the value of thread_cache_size?
If it is 0, try setting it to 4 (to begin with).
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence
Hi Fletcher,
8 could still be too low to make any significant difference.
What is the output of the following two commands?
mysql> show status like 'connections';
mysql> show status like 'threads_created';
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.invers
What version of PF is this?
The was an XML parsing related bug fixed in 4.0.5-2. The error in the logs was
exactly the same as what you are seeing.
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo.nu
Actually,
Just show us
mysql> show status like 'threads_created';
In addition to
mysql> show status like 'connections';
That will give us a better picture of the issue.
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (
Try upgrading to 4.0.6 :-)
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence
(www.packetfence.org)
On 2013-09-05, at 15:40 , Fletcher Haynes wrote:
> Just to be sure, here is
Hi Fletcher,
The best I can say is "maybe".
Since we don't know for sure what is causing the problem for you, it's
impossible to say for sure that this will fix it.
But it can't hurt and if this turns out to be what is causing your problem it
will fix it.
Re
conf/log.conf.
There is nothing wrong with deleting old files.
Just make sure you restart PF if you delete or move the currently used log
file.
Old (closed) files are fair game.
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse
I have the same bug.
We're looking into it.
Stay tuned.
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence
(www.packetfence.org)
On 2013-09-09, at 17:04 , Jason Frisvold
Hi Gabriel,
Please send the output of these two commands:
/usr/local/pf/bin/pfcmd version
service packetfence status
Regards.
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence
D BY PASSWORD
'*7D8422E7D0652EAAF568D5CDBA8ADEDD83531359' WITH GRANT OPTION |
+--------+
1 row in set (0.00 sec)
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SO
By the way, these are the grants and hashed passwords on my test VM.
You guys are welcome to try to hack it.
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence
l for most people.
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence
(www.packetfence.org)
On 2013-10-03, at 7:21 , "Morris, Andi" wrote:
> I'm working on
Hello Ulrich,
Is this on debian or ubuntu?
I recall there was a similar issue in the past. Fixed by this
https://github.com/inverse-inc/packetfence/commit/481fb1c6492f5592d7c585a2f0f9af8c42779875
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866
Hi Dan,
Try raising the loglevel for log4perl.category.pf.SNMP to at least INFO in
/usr/local/pf/conf/log.conf.
That should give you a bit more information to work with.
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc
issue.
Keep us informed.
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence
(www.packetfence.org)
On 2013-11-15, at 11:56 , "Decoursey, Jason B CADET MIL USA USMA&quo
Hi Andy,
It's probably the log rotation.
You might want to investigate the "copytruncate" option to logrotate.
That would make the restart unnecessary.
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Lead
the snort ids of
the alerts you want to trigger upon.
That should get you started ;-)
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence
(www.packetfence.org)
On 2013-12-03
foreground and check the output.
Hope that helps,
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence
(www.packetfence.org)
On 2013-12-09, at 9:22 , Bryan M wrote:
> Hi,
ow, as it seems better not to restart
services unnecessarily.
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence
(www.packetfence.org)
On 2013-12-11, at 16:20 , "Sallee, St
Hi Patrick,
Please read UPGRADE.asciidoc.
The solution to your woes is in there.
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence
(www.packetfence.org)
On 2013-12-12, at
Try it like this:
yum update packetfence\* --enablerepo=PacketFence,of,rpmforge,epel
That went smoothly for me.
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence
eport?
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence
(www.packetfence.org)
On 2013-12-20, at 20:33 , Stephen Wittstruck wrote:
> Hi all,
>
> Rebooting the our C
.
What happens if you wipe the logs (logs/packetfence.log) and reboot?
What are the messages saying about pfdhcplistener or dhcpd?
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and
Hi Dodger,
Don't use MAC authentication if you can't trust the MAC.
Use something like WPA2-Enterprise with computer or user authentication
(presumably against a directory server).
Otherwise be very restrictive about which VLAN you place MAC authenticated
devices into.
Regards,
--
L
Hi Jake,
Check the semaphores.
I know it does to seem to make sense, but just try this:
# ipcs -s | wc -l
If that number is around 128 it can cause "no space left on device" errors.
If that is the case, delete the semaphores with ipcrm and restart PF services.
Regards,
--
Louis
Hi Jake,
Forget that.
Jason is right.
Your root seems full.
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence
(www.packetfence.org)
On 2014-02-07, at 13:36 , Louis Munro wrote
Hi Justin,
A) No. PacketFence 4 and up is meant to be running on Centos 6.
B) What does /usr/local/pf/logs/packetfence.log say?
What happens if you just run
service packetfence start
?
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Your answer lies below.
You are failing MSCHAP authentication.
Did you configure the FreeRADIUS mschap module?
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence
(www.packetfence.org
he captive portal where
they will have to authenticate using the credentials you created.
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence
(www.packetfence.org)
On 2014-02-1
controller you are using.
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence
(www.packetfence.org)
On 2014-02-12, at 10:44 , sampath jayashantha wrote:
> Hi louis,
>
>
> Th
Hi Jason,
Yes, that is the way it's meant to be used.
Please don't hijack other threads. Start a new thread if you want to ask a
question.
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (w
Hi Stephen,
Sorry, been busy…
So I had to reread our previous emails to see why I was asking about your
sudoers file.
In any case, it seems ok.
Can you post the output to
chkconfig --list
so that we see what is supposed to start when you reboot?
Regards,
--
Louis Munro
lmu...@inverse.ca
I couldn't agree more with Jason.
PacketFence is meant to automate access control to switches where it would be
impractical to do it manually.
Server switches should be manually managed and access to them should be
limited.
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inver
That is why you always need at least two PacketFence installations.
Each managing the other's switch ;-)
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence
(www.packetfence.org
Hi Stephen,
This looks normal.
What does /var/log/boot.log record?
What does puppet manage on this VM?
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence
(www.packetfence.org)
On
Hi Leonel,
Yes you need to recompile the binary file.
man msgfmt should show you how.
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence
(www.packetfence.org)
On 2014-03
Just to restate the obvious, you may need to restart radius for that change to
take effect.
Otherwise the dynamic-clients virtual server may not be loaded.
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind
Hi Jason,
Please tell us more about your setup.
To answer that question requires us to know which switch you have and which
deauthentication method you are using.
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders
is sent to port 3799. Make sure nothing is blocking traffic on that
port from the PF server to the switch.
That should get you started.
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo
s and their rules.
You should be able to create a rule with a conditions like this:
'SSID equals srsec'
and then add an action that assigns a role mapped to the VLAN you want to sent
the device to, such as :
'Set role srsec'
Regards,
--
Louis Munro
lmu...@inver
regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence
(www.packetfence.org)
On 2014-04-10, at 12:45 , Etienne Vella wrote:
> Hi,
>
> We did a scan on the packet fen
More on Heartbleed:
Adding insult to injury, it seems you also need to upgrade the 'libssl1.0.0'
package on ubuntu.
Make sure the changelog mentions the fix to heartbeat and you should be ok.
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866
overwritten when you upgrade.
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence
(www.packetfence.org)
On 2014-04-10, at 20:13 , Thomas Tsai wrote:
> Where in the PF con
Hi Adrian,
VLANs are mapped to roles through the Switches configuration.
Each switch ( or controller, as may be the case) has a "roles" tab where you
can map a role to a VLAN.
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
I
;
> 1.Created Portal Profile srsec
> 2. Created Role: VLAN112
> 3.Created Source: AD
>a. Created rule: VLAN 112 -> if SSID equal srsec set role VLAN_112
> 4. Added Vlan to switches.conf
> 5. Restart all services.
>
>
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
in the
configuration file.
sed is your friend in that case.
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence
(www.packetfence.org)
On 2014-05-02, at 9:15 , "Morris,
will point the hostname to
the IP you have shared between servers.
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence
(www.packetfence.org)
On 2014-05-02, at 10:04 , "
s returned should make sense.
If it is much higher than expected, think twice before running the delete.
E.g.
mysql> select count(*) from node where mac = '00:11:22:33:44:55';
and
mysql> select count(*) from locationlog where mac = '00:11:22:33:44:55';
Regard
Hi Denis,
Those look like warnings (not errors), probably issued by the perl object
destructor.
I would not unduly be worried.
The real question to me is why are you running this command exactly?
This script is not necessary to install PacketFence.
Regards,
--
Louis Munro
lmu...@inverse.ca
usd
Start FreeRADIUS in debugging mode while pointing to the PacketFence specific
directory:
# radiusd -d raddb -X
Then look at the output for any test that you are running with radtest.
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-61
Just to clarify what I wrote, the command to start radiusd in debugging mode is
# radiusd -d /usr/local/pf/raddb -X
My previous message assumed a CWD of /usr/local/pf.
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders
ry the radtest command as yet, as I figured I should get this one
> sorted out fir
Correct. This has to work before FreeRADIUS will correctly authenticate AD
users.
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders beh
join could be incorrect because you could be
pointing to the wrong server.
Since the join seems ok, I would looking into what info you might no be able to
get from the domain.
does wbinfo -u return the list of users?
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *1
.
Best regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence
(www.packetfence.org)
On 2014-06-02, at 16:50 , Carla Nurse wrote:
> Hi Louis,
>
> When I run wbinfo -
trying to achieve is authentication of external (i.e. RADIUS)
users via ntlm_auth.
All FreeRadius really cares about is the return code from ntlm_auth.
I have never had to change pam settings to get ntlm_auth working.
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918
tication.
Have you considered the possibility that the issue is on the AD server?
Also, make sure you have DNS working correctly.
tcpdump ca be your friend to see what is going on between your server and AD.
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1
, most likely by adding a single or
double quote.
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence
(www.packetfen
you are at modifying the FreeRADIUS
configuration.
There is no magic there but you may be in for reading the fine manual.
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and P
ofile default
>
Hi Andi,
Could you post your pf.conf file (stripped of passwords and comprising
information) please?
Also, try nslookup www.google.com.(with a dot at the end).
The warning about nbregpages is annoying but should not cause this problem.
Regards,
--
Louis Munro
lmu...@inve
Andi,
Please also post your conf/networks.conf file.
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence
(www.packetfence.org)
On 2014-06-12, at 13:34 , Louis Munro wrote
Hi Andi,
Remove the fake_mac_enabled below and restart PF.
I believe this is a bug in the configurator.
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence
e more specific about your requirements if you want more
advice.
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence
(www.
Hi,
The real question is what kind of WiFi equipment are you using?
What kind of APs/Controller?
PacketFence has the ability to provide guest portals and such, but the way to
do it will depend on what the network equipment supports.
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
/git_commit_id and then run
/usr/local/pf/addons/pf-maint.pl.
That should download the patches and apply them for you.
Just restart PacketFence afterward.
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo
that
would not be in RHEL 6 at the moment?
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence
(www.packetfence.org)
On 2014-06-18, at 11:23 , Victor Shustov wrote:
> Hi,
&
't want to contemplate it.
Perhaps someone is more knowledgeable about iOS than I am and will chime in.
I am sure we all would appreciate it.
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo.nu)
-Mart, then to Hooters etc.
This change breaks such tracking.
It is not perfect though as you mentioned.
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and
RHEL7 repos.
Some of those packages will need to be rebuilt.
Some dependencies may change etc.
So it's going to take some testing before we can officially support it.
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Lead
Thank you Arthur.
We all need a canary for our coal mine sometimes...
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence
(www.packetfence.org)
On 2014-06-19, at 11:01
/eapol_test/
Save yourself some time and install openssl-devel and libnl-devel before typing
"make eapol_test".
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence
(www.packe
the output of radiusd -d raddb -X.
What you are trying to achieve should be easy, once you know how to do it ;-)
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence
u are not proxying that domain.
Revert all changes to proxy.conf and try again.
Don't try to get eduroam working before you have your own domain authenticating
locally.
Don't make it harder than it has to be.
Cheers,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918
Hi Thomas,
Do you have fake_mac_enabled in your networks.conf?
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence
(www.packetfence.org)
On 2014-06-25, at 11:35 , "T
in conf/switches.conf for the
switch/controller in question (stripped of passwords of course).
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence
(www.packetfence.org)
On
defined, PF will return it in preference to the VLAN id.
Please show us your switches.conf if that does not fix it.
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence
Hi Will,
So I assume that the default section below is no longer current?
You do have a registrationRole defined there.
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence
Hi Will,
Did you do a pfcmd configreload after you made that change?
You could be serving requests from the cache otherwise.
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and
You forgot to run this command:
# /usr/local/pf/bin/pfcmd version > /usr/local/pf/conf/currently-at
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence
(www.packetfence.
Hi Pete,
You may have to restart the httpd.admin service for it to reload that file.
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence
(www.packetfence.org)
On 2014-07-07
Try this one then:
# pfcmd configreload
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence
(www.packetfence.org)
On 2014-07-07, at 11:44 , Pete Hoffswell wrote:
> S
Could it be cached in your browser?
Otherwise you can try the big guns:
# pfcmd configreload hard
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence
(www.packetfence.org)
On 2014
Hi Fletcher,
Can you tell us what distro you are running on?
Also, give us the output of :
# ls -l /usr/local/pf/db/pf-schema.sql
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and
Octets),
(p_acctsessiontime - Previous_Session_Time));
END */;;
If the procedure really does not exist you may have to create it, though I
wonder how it could be missing.
This has been part of PacketFence for quite some time now.
Let us know.
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inve
A.
I think I know what happened.
The defaults for mysqldump do not backup stored procedures.
That is why you need to add the -R on the command line.
Glad to see you fixed this.
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
them other than to help with
troubleshooting later on.
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence
(www.packetfence.org)
On 2014-08-04, at 12:49 , Max McGrath wrote
Hi Max,
You need to add the files to /etc/logrotate.d/packetfence.
The addons file is only there for reference if memory serves me well.
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo.nu
' and 'testtest'.
:-)
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence
(www.packetfence.org)
On 2014-08-06, at 7:14 , "Morris, Andi" wrote:
> Hey
Yes, default or normal (in pre 4.0 terms) is customary.
But if you think about it, there isn't a single VLAN for that anymore.
You can have as many "registered" VLANs as you have roles.
How you name them is entirely up to you.
Regards,
--
Louis Munro
lmu...@inverse.ca ::
Gentlemen,
Please do not cc the packetfence-devel or packetfence-announce lists on user
support questions.
Those lists are reserved to development and release announcements related
issues.
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Hi Stephen,
Try running Freeradius in debug mode to get more output:
# radiusd -d /usr/local/pf/raddb -X
Please post the output.
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and
refuse to start.
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence
(www.packetfence.org)
On 2014-08-12, at 11:14 , "Stormont, Stephen (IMS)"
wrote:
>
;
--ntresponse=4df85dd62db46ee5bef1aa07fe499e87fc16eca72bd529e7
Then do:
# ntlm_auth --username=LT-T430-3\$ --challenge=4ab096b446376d5f
--ntresponse=4df85dd62db46ee5bef1aa07fe499e87fc16eca72bd529e7
Same goes for user authentication.
Also, please show us the contents of your /usr/local/pf/raddb/modules/mschap.
--
Louis Munro
lm
[ 7023]: pam auth inverse.local\lmunro
How does the line differ between when you are authentication manually (from the
command line) as opposed to when FreeRadius calls winbind (and fails)?
Is the domain the same?
Of course it may help if you have some logs from the AD side as well.
Regards,
--
L
he output of radiusd -d raddb -X.
Regards,
--
Louis Munro
lmu...@inverse.ca :: www.inverse.ca
+1.514.447.4918 *125 :: +1 (866) 353-6153
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence
(www.packetfence.org)
On 2014-08-13, at 14:31 , "Stormont, Stephen (IMS)"
w
1 - 100 of 775 matches
Mail list logo