Thanks for the reply, but creating a 'realm' in Policies and Access Control \ Realms for Google Workspace is necessary?
If so, tell me exactly what to set? In the General \ 'Realm' field I enter dc = schoolname, dc = edu, dc = it and then? In the other tabs (NTLM Auth EAP Configuration, Freeradius Proxy, Freeradius Eduroam Proxy, Stripping) what do I insert? they do not seem relevant to me for the purpose of an ldap client connection with Google Workspace. Thank you Da: P.Thirunavukkarasu <drthir...@tanuvas.org.in> Inviato: venerdì 3 giugno 2022 13:36 A: packetfence-users <packetfence-users@lists.sourceforge.net> Cc: leonardo.i...@itsinformatica.it Oggetto: Re: [PacketFence-users] R: Setting up a local source with Google Workspace Hi Leonardo, In 'Bind DN' and 'Password' I have to enter the credentials generated by the Google Workspace console -> Authentication section -> "Generate new credentials". Quite right? Yes. Correct.. In the 'Base DN' field I have entered the customer's domain in DN format, i.e. the domain is schoolname.edu.it <http://schoolname.edu.it/> so in this field I have entered the string: dc = schoolname, dc = edu, dc = it. Quite right? dc=schoolname,dc=edu,dc=it This is my setup in our campus with Google Workspace 'Host' = ldap.google.com <http://ldap.google.com/> on SSL port 636 'SSL Verify Mode' = none 'Dead duration' = 60 'Connection timeout' = 1 'Request timeout' = 5 'Response timeout' = 10 'Scope' = Subtree 'Search Attributes' = null 'Append search attributes' = null 'Email Attribute' = mail 'Cache match' = off 'Monitor' = on 'Shuffle' = off 'Associated Realms' = I associated the realm created in the realm "schoolname.edu.in <http://schoolname.edu.in> " Also I wanted to know what to put in the 'Username Attribute' field. uid Hope it will help you... Thanks Thirunavukkarasu On Fri, Jun 3, 2022 at 3:43 PM leonardo.izzo--- via PacketFence-users <packetfence-users@lists.sourceforge.net <mailto:packetfence-users@lists.sourceforge.net> > wrote: Hi, I would like to update you on the situation. With the configuration shown below, regardless of the value entered in the 'Username Attribute' field, by clicking on the 'Test' button the result is positive, therefore the parameters indicated are probably correct. On my pf server configured in inline mode, I created a connection profile having as source the local source configured with Google Workspace just tested correctly. In the captive portal that appears on the client side in the wifi on the inline network, I enter the credentials of a Google Workspace user, but unfortunately the error "Invalid login or password" comes out despite these credentials being correct (usern...@schoolname.edu <mailto:usern...@schoolname.edu> . It). Can you help me? Thank you Da: leonardo.i...@itsinformatica.it <mailto:leonardo.i...@itsinformatica.it> <leonardo.i...@itsinformatica.it <mailto:leonardo.i...@itsinformatica.it> > Inviato: venerdì 27 maggio 2022 15:17 A: 'packetfence-users@lists.sourceforge.net <mailto:packetfence-users@lists.sourceforge.net> ' <packetfence-users@lists.sourceforge.net <mailto:packetfence-users@lists.sourceforge.net> > Oggetto: Setting up a local source with Google Workspace Hello everyone, I have some doubts regarding some fields of the source in question. In 'Bind DN' and 'Password' I have to enter the credentials generated by the Google Workspace console -> Authentication section -> "Generate new credentials". Quite right? In the 'Base DN' field I have entered the customer's domain in DN format, i.e. the domain is schoolname.edu.it <http://schoolname.edu.it> so in this field I have entered the string: dc = schoolname, dc = edu, dc = it. Quite right? 'Host' = ldap.google.com <http://ldap.google.com> on SSL port 636 'SSL Verify Mode' = none 'Dead duration' = 60 'Connection timeout' = 1 'Request timeout' = 5 'Response timeout' = 10 'Scope' = Subtree 'Search Attributes' = null 'Append search attributes' = null 'Email Attribute' = mail 'Cache match' = off 'Monitor' = on 'Shuffle' = off 'Associated Realms' = nothing Also I wanted to know what to put in the 'Username Attribute' field. Thanks PacketFence-users mailing list PacketFence-users@lists.sourceforge.net <mailto:PacketFence-users@lists.sourceforge.net> https://lists.sourceforge.net/lists/listinfo/packetfence-users
_______________________________________________ PacketFence-users mailing list PacketFence-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/packetfence-users