Hi Nicolas, Keep i mind that freeradius must validate the username and password of the user, it's why you have to probably configure that: https://github.com/inverse-inc/packetfence/blob/devel/docs/PacketFence_Administration_Guide.asciidoc#option-2-authentication-against-active-directory-ad
Then when the 802.1x connection will work then packetfence will answer the reg vlan if the device is unreg and you will hit the captive portal. And if your device is reg then packetfence will answer the production network you defined. So first do that and maybe after you will want to enable autoregistration on 802.1x connection. Also run freeradius in debug mode will help: radius -d /usr/local/pf/raddb/ -X Regards Fabrice Le 2015-04-15 11:01, Nicolas Gailly a écrit : > Hello, > > I am currently testing PacketFence in a lab envionment to see if it > fits our need. > I successfully installed PacketFence with the VLAN enforcment mode, > using SNMP traps. > Everything works well (after many re-re-re-re-configurations :D) and > it looks promising. > However we want to use the more secure 802.1x technology , at least > for our regular users. > One thing I don't get is how regular users can authenticate with > 802.1.x WHILE at the same time, > new users can at the same time register on the registration portal ? > 802.1x by definition works at layer 2, so the switch will "block" > every other traffic, including http. > How come a new user can connect to the switch and access the > registration portal if the port is configured > to use 802.1x ? > There's surely something missing in my mind but i can not grasp it... > > Thank you for your help! > > Nicolas GAILLY > > > ------------------------------------------------------------------------------ > BPM Camp - Free Virtual Workshop May 6th at 10am PDT/1PM EDT > Develop your own process in accordance with the BPMN 2 standard > Learn Process modeling best practices with Bonita BPM through live exercises > http://www.bonitasoft.com/be-part-of-it/events/bpm-camp-virtual- event?utm_ > source=Sourceforge_BPM_Camp_5_6_15&utm_medium=email&utm_campaign=VA_SF > > > _______________________________________________ > PacketFence-users mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/packetfence-users -- Fabrice Durand [email protected] :: +1.514.447.4918 (x135) :: www.inverse.ca Inverse inc. :: Leaders behind SOGo (http://www.sogo.nu) and PacketFence (http://packetfence.org)
0xF78F957E.asc
Description: application/pgp-keys
------------------------------------------------------------------------------ BPM Camp - Free Virtual Workshop May 6th at 10am PDT/1PM EDT Develop your own process in accordance with the BPMN 2 standard Learn Process modeling best practices with Bonita BPM through live exercises http://www.bonitasoft.com/be-part-of-it/events/bpm-camp-virtual- event?utm_ source=Sourceforge_BPM_Camp_5_6_15&utm_medium=email&utm_campaign=VA_SF
_______________________________________________ PacketFence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users
