Hello ! I have configured 802.1x and mab. When I use mab and authenticate with an AD user on the portal I'm put in the right VLAN of my authentication source.
802.1x works aswell but always put me in VLAN 1 and does not assign roles. I tried to enable stripped username in the DEFAULT realm but it does not change anything. I also tried to strip from the switch but then the authentication is refused. Can I get some help pls ? Thank you ! Here are the logs : 2022-05-21T14:09:39Zpftestpacketfence_httpd.aaahttpd.aaainfo httpd.aaa(1558) INFO: [mac:00:0c:29:f6:0e:ac] handling radius autz request: from switch_ip => (10.0.0.10), connection_type => Ethernet-EAP,switch_mac => (aa:bb:cc:00:02:20), mac => [00:0c:29:f6:0e:ac], port => 3, username => "DOMAIN\Administrator" (pf::radius::authorize) 2022-05-21T14:09:39Zpftestpacketfence_httpd.aaahttpd.aaainfo httpd.aaa(1558) INFO: [mac:00:0c:29:f6:0e:ac] Instantiate profile default (pf::Connection::ProfileFactory::_from_profile) 2022-05-21T14:09:39Zpftestpacketfence_httpd.aaahttpd.aaainfo httpd.aaa(1558) INFO: [mac:00:0c:29:f6:0e:ac] Found authentication source(s) : 'AD-users' for realm 'default' (pf::config::util::filter_authentication_sources) 2022-05-21T14:09:39Zpftestpacketfence_httpd.aaahttpd.aaainfo httpd.aaa(1558) INFO: [mac:00:0c:29:f6:0e:ac] Role has already been computed and we don't want to recompute it. (pf::role::getNodeInfoForAutoReg) 2022-05-21T14:09:39Zpftestpacketfence_httpd.aaahttpd.aaawarn httpd.aaa(1558) WARN: [mac:00:0c:29:f6:0e:ac] No category computed for autoreg (pf::role::getNodeInfoForAutoReg) 2022-05-21T14:09:39Zpftestpacketfence_httpd.aaahttpd.aaainfo httpd.aaa(1558) INFO: [mac:00:0c:29:f6:0e:ac] Found authentication source(s) : 'AD-users' for realm 'default' (pf::config::util::filter_authentication_sources) 2022-05-21T14:09:39Zpftestpacketfence_httpd.aaahttpd.aaainfo httpd.aaa(1558) INFO: [mac:00:0c:29:f6:0e:ac] Role has already been computed and we don't want to recompute it. Getting role from node_info (pf::role::getRegisteredRole) 2022-05-21T14:09:39Zpftestpacketfence_httpd.aaahttpd.aaawarn httpd.aaa(1558) WARN: [mac:00:0c:29:f6:0e:ac] Use of uninitialized value $role in concatenation (.) or string at /usr/local/pf/lib/pf/role.pm line 489. 0001-01-01T00:00:00Z 2022-05-21T14:09:39Zpftestpacketfence_httpd.aaahttpd.aaainfo httpd.aaa(1558) INFO: [mac:00:0c:29:f6:0e:ac] Username was NOT defined or unable to match a role - returning node based role '' (pf::role::getRegisteredRole) 2022-05-21T14:09:39Zpftestpacketfence_httpd.aaahttpd.aaainfo httpd.aaa(1558) INFO: [mac:00:0c:29:f6:0e:ac] PID: "default", Status: reg Returned VLAN: (undefined), Role: (undefined) (pf::role::fetchRoleForNode) 2022-05-21T14:09:39Zpftestpacketfence_httpd.aaahttpd.aaawarn httpd.aaa(1558) WARN: [mac:00:0c:29:f6:0e:ac] Use of uninitialized value $vlanName in hash element at /usr/local/pf/lib/pf/Switch.pm line 633. 0001-01-01T00:00:00Z 2022-05-21T14:09:39Zpftestpacketfence_httpd.aaahttpd.aaawarn httpd.aaa(1558) WARN: [mac:00:0c:29:f6:0e:ac] Use of uninitialized value $name in exists at /usr/local/pf/lib/pf/Switch.pm line 667. 0001-01-01T00:00:00Z 2022-05-21T14:09:39Zpftestpacketfence_httpd.aaahttpd.aaawarn httpd.aaa(1558) WARN: [mac:00:0c:29:f6:0e:ac] Use of uninitialized value $vlanName in concatenation (.) or string at /usr/local/pf/lib/pf/Switch.pm line 640. 0001-01-01T00:00:00Z 2022-05-21T14:09:39Zpftestpacketfence_httpd.aaahttpd.aaawarn httpd.aaa(1558) WARN: [mac:00:0c:29:f6:0e:ac] No parameter Vlan found in conf/switches.conf for the switch 10.0.0.10 (pf::Switch::getVlanByName) 2022-05-21T14:09:39Zpftestpacketfence_httpd.aaahttpd.aaawarn httpd.aaa(1558) WARN: [mac:00:0c:29:f6:0e:ac] Use of uninitialized value $roleName in hash element at /usr/local/pf/lib/pf/Switch.pm line 590. 0001-01-01T00:00:00Z 2022-05-21T14:09:39Zpftestpacketfence_httpd.aaahttpd.aaawarn httpd.aaa(1558) WARN: [mac:00:0c:29:f6:0e:ac] Use of uninitialized value $name in exists at /usr/local/pf/lib/pf/Switch.pm line 611. 0001-01-01T00:00:00Z 2022-05-21T14:09:39Zpftestpacketfence_httpd.aaahttpd.aaawarn httpd.aaa(1558) WARN: [mac:00:0c:29:f6:0e:ac] Use of uninitialized value $roleName in concatenation (.) or string at /usr/local/pf/lib/pf/Switch.pm line 597. 0001-01-01T00:00:00Z 2022-05-21T14:09:39Zpftestpacketfence_httpd.aaahttpd.aaawarn httpd.aaa(1558) WARN: [mac:00:0c:29:f6:0e:ac] No parameter Role found in conf/switches.conf for the switch 10.0.0.10 (pf::Switch::getRoleByName)
_______________________________________________ PacketFence-users mailing list PacketFence-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/packetfence-users