I don't need help anymore on that ! On Sat, May 21, 2022 at 2:22 PM José Ramos <joseramosdeoli...@gmail.com> wrote:
> Hello ! I have configured 802.1x and mab. When I use mab and authenticate > with an AD user on the portal I'm put in the right VLAN of my > authentication source. > > 802.1x works aswell but always put me in VLAN 1 and does not assign roles. > I tried to enable stripped username in the DEFAULT realm but it does not > change anything. I also tried to strip from the switch but then the > authentication is refused. > > Can I get some help pls ? Thank you ! > > Here are the logs : > 2022-05-21T14:09:39Zpftestpacketfence_httpd.aaahttpd.aaainfo > httpd.aaa(1558) INFO: [mac:00:0c:29:f6:0e:ac] handling radius autz request: > from switch_ip => (10.0.0.10), connection_type => Ethernet-EAP,switch_mac > => (aa:bb:cc:00:02:20), mac => [00:0c:29:f6:0e:ac], port => 3, username => > "DOMAIN\Administrator" (pf::radius::authorize) > 2022-05-21T14:09:39Zpftestpacketfence_httpd.aaahttpd.aaainfo > httpd.aaa(1558) INFO: [mac:00:0c:29:f6:0e:ac] Instantiate profile default > (pf::Connection::ProfileFactory::_from_profile) > 2022-05-21T14:09:39Zpftestpacketfence_httpd.aaahttpd.aaainfo > httpd.aaa(1558) INFO: [mac:00:0c:29:f6:0e:ac] Found authentication > source(s) : 'AD-users' for realm 'default' > (pf::config::util::filter_authentication_sources) > 2022-05-21T14:09:39Zpftestpacketfence_httpd.aaahttpd.aaainfo > httpd.aaa(1558) INFO: [mac:00:0c:29:f6:0e:ac] Role has already been > computed and we don't want to recompute it. > (pf::role::getNodeInfoForAutoReg) > 2022-05-21T14:09:39Zpftestpacketfence_httpd.aaahttpd.aaawarn > httpd.aaa(1558) WARN: [mac:00:0c:29:f6:0e:ac] No category computed for > autoreg (pf::role::getNodeInfoForAutoReg) > 2022-05-21T14:09:39Zpftestpacketfence_httpd.aaahttpd.aaainfo > httpd.aaa(1558) INFO: [mac:00:0c:29:f6:0e:ac] Found authentication > source(s) : 'AD-users' for realm 'default' > (pf::config::util::filter_authentication_sources) > 2022-05-21T14:09:39Zpftestpacketfence_httpd.aaahttpd.aaainfo > httpd.aaa(1558) INFO: [mac:00:0c:29:f6:0e:ac] Role has already been > computed and we don't want to recompute it. Getting role from node_info > (pf::role::getRegisteredRole) > 2022-05-21T14:09:39Zpftestpacketfence_httpd.aaahttpd.aaawarn > httpd.aaa(1558) WARN: [mac:00:0c:29:f6:0e:ac] Use of uninitialized value > $role in concatenation (.) or string at /usr/local/pf/lib/pf/role.pm line > 489. > 0001-01-01T00:00:00Z > 2022-05-21T14:09:39Zpftestpacketfence_httpd.aaahttpd.aaainfo > httpd.aaa(1558) INFO: [mac:00:0c:29:f6:0e:ac] Username was NOT defined or > unable to match a role - returning node based role '' > (pf::role::getRegisteredRole) > 2022-05-21T14:09:39Zpftestpacketfence_httpd.aaahttpd.aaainfo > httpd.aaa(1558) INFO: [mac:00:0c:29:f6:0e:ac] PID: "default", Status: reg > Returned VLAN: (undefined), Role: (undefined) (pf::role::fetchRoleForNode) > 2022-05-21T14:09:39Zpftestpacketfence_httpd.aaahttpd.aaawarn > httpd.aaa(1558) WARN: [mac:00:0c:29:f6:0e:ac] Use of uninitialized value > $vlanName in hash element at /usr/local/pf/lib/pf/Switch.pm line 633. > 0001-01-01T00:00:00Z > 2022-05-21T14:09:39Zpftestpacketfence_httpd.aaahttpd.aaawarn > httpd.aaa(1558) WARN: [mac:00:0c:29:f6:0e:ac] Use of uninitialized value > $name in exists at /usr/local/pf/lib/pf/Switch.pm line 667. > 0001-01-01T00:00:00Z > 2022-05-21T14:09:39Zpftestpacketfence_httpd.aaahttpd.aaawarn > httpd.aaa(1558) WARN: [mac:00:0c:29:f6:0e:ac] Use of uninitialized value > $vlanName in concatenation (.) or string at /usr/local/pf/lib/pf/Switch.pm > line 640. > 0001-01-01T00:00:00Z > 2022-05-21T14:09:39Zpftestpacketfence_httpd.aaahttpd.aaawarn > httpd.aaa(1558) WARN: [mac:00:0c:29:f6:0e:ac] No parameter Vlan found in > conf/switches.conf for the switch 10.0.0.10 (pf::Switch::getVlanByName) > 2022-05-21T14:09:39Zpftestpacketfence_httpd.aaahttpd.aaawarn > httpd.aaa(1558) WARN: [mac:00:0c:29:f6:0e:ac] Use of uninitialized value > $roleName in hash element at /usr/local/pf/lib/pf/Switch.pm line 590. > 0001-01-01T00:00:00Z > 2022-05-21T14:09:39Zpftestpacketfence_httpd.aaahttpd.aaawarn > httpd.aaa(1558) WARN: [mac:00:0c:29:f6:0e:ac] Use of uninitialized value > $name in exists at /usr/local/pf/lib/pf/Switch.pm line 611. > 0001-01-01T00:00:00Z > 2022-05-21T14:09:39Zpftestpacketfence_httpd.aaahttpd.aaawarn > httpd.aaa(1558) WARN: [mac:00:0c:29:f6:0e:ac] Use of uninitialized value > $roleName in concatenation (.) or string at /usr/local/pf/lib/pf/Switch.pm > line 597. > 0001-01-01T00:00:00Z > 2022-05-21T14:09:39Zpftestpacketfence_httpd.aaahttpd.aaawarn > httpd.aaa(1558) WARN: [mac:00:0c:29:f6:0e:ac] No parameter Role found in > conf/switches.conf for the switch 10.0.0.10 (pf::Switch::getRoleByName) >
_______________________________________________ PacketFence-users mailing list PacketFence-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/packetfence-users