Thanks for this answer. I will let it work with LDAP until version 4.4.
Sabrina Louison-François
Ingénieure Réseaux et Télécoms
Direction des Systèmes d'Information
École normale supérieure de Cachan
61, avenue du Président Wilson
94235 Cachan cedex
tél : 01 47 40 74 24
Le 28/08/2014 14:33, Fabrice DURAND a écrit :
Hello Sabrina,
wait for the 4.4, we included vlan filter based on the radius request
so you will be able to write your own rules based on all the radius
attributes.
https://github.com/inverse-inc/packetfence/pull/196
Regards
Fabrice
Le 2014-08-28 02:38, Sabrina Louison-françois a écrit :
Hello,
I raise the subject because I want to authenticate Packetfence users
with a RADIUS (freeradius) only. I configured my radius server to
send a specific parameters "Egress-VLAN-Name" to packetfence. The
role must be given according to this value.
In packetfence 3.6 (in production) we had to modify those files to
make it work:
- /usr/local/pf/lib/pf/vlan/custom.pm : function getNormalVlan
- /usr/local/pf/conf/authentication/radius.pm: function authenticate
Do I have to do the same with the version 4 ? I would like to have a
easier method with the web interface.
Please let me know.
Regards,
**
Sabrina Louison-François
Ingénieure Réseaux et Télécoms
Direction des Systèmes d'Information
École normale supérieure de Cachan
61, avenue du Président Wilson
94235 Cachan cedex
tél : 01 47 40 74 24
Le 19/07/2014 23:04, David R a écrit :
Hi,
The thing i don't understand about Andi's answer is how does the
authentication process works...
So ok, everything is configured in AD (right member group for each group), on
PacketFence the link between ad group and Vlan is ok.
But what about the users authenticating thoufg 802.1x PEAP ??? how can they
authenticate ?
In my opinion something is missing, shouldn't i configure something about
Radius on Packetfence side ? what about the switch, nothing else than "aaa"
with radius config ?
Please let me know.
Kind regards,
David R
------------------------------------------------------------------------------
Want fast and easy access to all the code in your enterprise? Index and
search up to 200,000 lines of code with a free copy of Black Duck
Code Sight - the same software that powers the world's largest code
search on Ohloh, the Black Duck Open Hub! Try it now.
http://p.sf.net/sfu/bds
_______________________________________________
PacketFence-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/packetfence-users
------------------------------------------------------------------------------
Slashdot TV.
Video for Nerds. Stuff that matters.
http://tv.slashdot.org/
_______________________________________________
PacketFence-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/packetfence-users
--
Fabrice Durand
[email protected] :: +1.514.447.4918 (x135) ::www.inverse.ca
Inverse inc. :: Leaders behind SOGo (http://www.sogo.nu) and PacketFence
(http://packetfence.org)
------------------------------------------------------------------------------
Slashdot TV.
Video for Nerds. Stuff that matters.
http://tv.slashdot.org/
_______________________________________________
PacketFence-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/packetfence-users
------------------------------------------------------------------------------
Slashdot TV.
Video for Nerds. Stuff that matters.
http://tv.slashdot.org/
_______________________________________________
PacketFence-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/packetfence-users
