Hi Fabrice, thanks for the response. Yes, I'm referring to Active Directory when I say the user changes their password. Our passwords are set via group policy to be changed every 3 months, and when this happens users with iOS devices that have setup their devices using our mobileconfig script, cannot change their password. They have to remove the profile from the iOS settings menu, and then setup again. However, they cannot setup again without getting a member of IT staff to unregister their device for them.
I like the idea of the script sending an alert to packetfence to unregister the device, however, the two examples given do not match the password change situation. I can find out if there's a similar event created when a user changes their password. However, it seems to me that just allowing the device back into the captive portal would be a lot simpler. Is there a reason why this cannot be done? Failing that, I can just try to change that "Sorry" message to one that offers a link to users to resetup their devices, and just white-list that URL through. Cheers Andi -----Original Message----- From: Fabrice DURAND [mailto:[email protected]] Sent: 15 April 2015 13:26 To: [email protected] Subject: Re: [PacketFence-users] Allowing registered devices into the captive portal Hi Andi, in fact each time you hit the portal and if your device is reg then packetfence try to reevaluate your access. So i have one question, when you talk about "they change their network password", where they change the password ? in Active Directory ? If it's the case then you can try to use something similar to that: https://github.com/inverse-inc/packetfence/blob/devel/docs/PacketFence_Administration_Guide.asciidoc#activedirectory-integration but with another trigger like "password change" then the device will be unreg and will hit the portal to reinstall the IOS profile. Regards Fabrice Le 2015-04-15 07:09, Morris, Andi a écrit : > > Hi, > > Anyone have any thoughts on this? For our next PacketFence roll out > I'd ideally like to allow registered devices to access the setup > portal and not hit the "Sorry! Your network should be enabled within a > minute or two." message. I can't really think of any reason why > devices shouldn't be allowed back into the captive portal, even after > they're registered, unless I'm missing something. > > > > Cheers, > > Andi > > > > *From:*Morris, Andi [mailto:[email protected]] > *Sent:* 25 March 2015 11:18 > *To:* [email protected] > *Subject:* [PacketFence-users] Allowing registered devices into the > captive portal > > > > Hi all, > > Is there a way that we can allow registered devices to access the > captive portal with as much access as an unregistered device? We need > to allow this in order to allow them to be able to reinstall the iOS > profile if they change their network password. > > > > Version is 4.2.1 > > > > Cheers, > > Andi > > > > ------------------------------------- > > Andi Morris > > IT Security Officer > Cardiff Metropolitan University > > T: 02920 205720 > E: [email protected] <mailto:[email protected]> > > -------------------------------------- > > > > ---------------------------------------------------------------------- > -- > > > Cardiff Metropolitan University - 150 years of nurturing talent > <http://www.cardiffmet.ac.uk/cardiffmet150> > > > > ---------------------------------------------------------------------- > -------- BPM Camp - Free Virtual Workshop May 6th at 10am PDT/1PM EDT > Develop your own process in accordance with the BPMN 2 standard Learn > Process modeling best practices with Bonita BPM through live exercises > http://www.bonitasoft.com/be-part-of-it/events/bpm-camp-virtual- > event?utm_ > source=Sourceforge_BPM_Camp_5_6_15&utm_medium=email&utm_campaign=VA_SF > > > _______________________________________________ > PacketFence-users mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/packetfence-users -- Fabrice Durand [email protected] :: +1.514.447.4918 (x135) :: www.inverse.ca Inverse inc. :: Leaders behind SOGo (http://www.sogo.nu) and PacketFence (http://packetfence.org) ------------------------------------------------------------------------------ BPM Camp - Free Virtual Workshop May 6th at 10am PDT/1PM EDT Develop your own process in accordance with the BPMN 2 standard Learn Process modeling best practices with Bonita BPM through live exercises http://www.bonitasoft.com/be-part-of-it/events/bpm-camp-virtual- event?utm_ source=Sourceforge_BPM_Camp_5_6_15&utm_medium=email&utm_campaign=VA_SF _______________________________________________ PacketFence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users
