We are trying to configure a new set up on version 14. The goal of the new
config is to REJECT machines that do not have a valid AD user and ACCEPT
machines that are logged in by a valid AD user.
The following log files show the machine not getting accepted (but the user
logged into the machine is a valid AD user). We are only testing one Cisco
switch right now, looking at port 24.
Any help would be appreciated.
2024-10-21T11:55:14.378859-05:00 packetfence
httpd.webservices-docker-wrapper[3744]: httpd.webservices(2886) INFO:
[mac:10:e7:c6:0a:e3:4a] Instantiate profile PBTConnectionProfile
(pf::Connection::ProfileFactory::_from_profile)
2024-10-21T11:55:29.442822-05:00 packetfence httpd.aaa-docker-wrapper[3774]:
httpd.aaa(7) INFO: [mac:10:e7:c6:0a:e3:4a] handling radius autz request: from
switch_ip => (10.5.19.23), connection_type => Ethernet-NoEAP, switch_mac =>
(f8:e9:4f:7c:44:16), mac => [10:e7:c6:0a:e3:4a], port => 24, username =>
"10e7c60ae34a" (pf::radius::authorize)
2024-10-21T11:55:29.459625-05:00 packetfence httpd.aaa-docker-wrapper[3774]:
httpd.aaa(7) INFO: [mac:10:e7:c6:0a:e3:4a] Instantiate profile
PBTConnectionProfile (pf::Connection::ProfileFactory::_from_profile)
2024-10-21T11:55:29.475299-05:00 packetfence httpd.aaa-docker-wrapper[3774]:
httpd.aaa(7) INFO: [mac:10:e7:c6:0a:e3:4a] Found authentication source(s) :
'UnknownDevices' for realm 'null'
(pf::config::util::filter_authentication_sources)
2024-10-21T11:55:29.475534-05:00 packetfence httpd.aaa-docker-wrapper[3774]:
httpd.aaa(7) INFO: [mac:10:e7:c6:0a:e3:4a] Using sources UnknownDevices for
matching (pf::authentication::match2)
2024-10-21T11:55:29.476252-05:00 packetfence httpd.aaa-docker-wrapper[3774]:
httpd.aaa(7) INFO: [mac:10:e7:c6:0a:e3:4a] Matched rule (UnknownDevices) in
source UnknownDevices, returning actions.
(pf::Authentication::Source::match_rule)
2024-10-21T11:55:29.476379-05:00 packetfence httpd.aaa-docker-wrapper[3774]:
httpd.aaa(7) INFO: [mac:10:e7:c6:0a:e3:4a] Matched rule (UnknownDevices) in
source UnknownDevices, returning actions. (pf::Authentication::Source::match)
2024-10-21T11:55:29.477179-05:00 packetfence httpd.aaa-docker-wrapper[3774]:
httpd.aaa(7) WARN: [mac:10:e7:c6:0a:e3:4a] The DAY is today or before today.
Setting date to next year (pf::config::try {...} )
2024-10-21T11:55:29.484979-05:00 packetfence httpd.aaa-docker-wrapper[3774]:
httpd.aaa(7) INFO: [mac:10:e7:c6:0a:e3:4a] Found authentication source(s) :
'UnknownDevices' for realm 'null'
(pf::config::util::filter_authentication_sources)
2024-10-21T11:55:29.484979-05:00 packetfence httpd.aaa-docker-wrapper[3774]:
httpd.aaa(7) INFO: [mac:10:e7:c6:0a:e3:4a] Connection type is MAC-AUTH. Getting
role from node_info (pf::role::getRegisteredRole)
2024-10-21T11:55:29.485151-05:00 packetfence httpd.aaa-docker-wrapper[3774]:
httpd.aaa(7) INFO: [mac:10:e7:c6:0a:e3:4a] Username was defined "10e7c60ae34a"
- returning role 'REJECT' (pf::role::getRegisteredRole)
2024-10-21T11:55:29.485151-05:00 packetfence httpd.aaa-docker-wrapper[3774]:
httpd.aaa(7) INFO: [mac:10:e7:c6:0a:e3:4a] PID: "10e7c60ae34a", Status: reg
Returned VLAN: (undefined), Role: REJECT (pf::role::fetchRoleForNode)
2024-10-21T11:55:29.486450-05:00 packetfence httpd.aaa-docker-wrapper[3774]:
httpd.aaa(7) INFO: [mac:10:e7:c6:0a:e3:4a] According to rules in
fetchRoleForNode this node must be kicked out. Returning USERLOCK
(pf::Switch::Template::handleRadiusDeny)
2024-10-21T11:55:29.489778-05:00 packetfence httpd.aaa-docker-wrapper[3774]:
httpd.aaa(7) INFO: [mac:10:e7:c6:0a:e3:4a] security_event 1300003 force-closed
for 10:e7:c6:0a:e3:4a (pf::security_event::security_event_force_close)
2024-10-21T11:55:29.490003-05:00 packetfence httpd.aaa-docker-wrapper[3774]:
httpd.aaa(7) INFO: [mac:10:e7:c6:0a:e3:4a] Instantiate profile
PBTConnectionProfile (pf::Connection::ProfileFactory::_from_profile)
2024-10-21T11:55:34.102678-05:00 packetfence pfperl-api-docker-wrapper[1989]:
pfperl-api(9) INFO: [mac:[undef]] Using 300 resolution threshold
(pf::pfcron::task::cluster_check::run)
2024-10-21T11:55:34.103375-05:00 packetfence pfperl-api-docker-wrapper[1989]:
pfperl-api(9) INFO: [mac:[undef]] All cluster members are running the same
configuration version (pf::pfcron::task::cluster_check::run)
2024-10-21T11:55:35.099033-05:00 packetfence pfperl-api-docker-wrapper[1989]:
pfperl-api(10) INFO: [mac:[undef]] getting security_events triggers for
accounting cleanup (pf::accounting::acct_maintenance)
2024-10-21T11:55:35.108415-05:00 packetfence pfperl-api-docker-wrapper[1989]:
pfperl-api(9) INFO: [mac:[undef]] processed 0 security_events during
security_event maintenance (1729529735.09828 1729529735.10777)
(pf::security_event::security_event_maintenance)
2024-10-21T11:56:22.986817-05:00 packetfence
httpd.webservices-docker-wrapper[3744]: httpd.webservices(2886) INFO:
[mac:10:98:19:3a:84:af] Instantiate profile default
(pf::Connection::ProfileFactory::_from_profile)
[cid:image001.png@01DB23B1.78456940]
Keith Redding
Network Engineer
101 S Main St, McPherson, KS 67460
kredd...@peoples.bank
Work: 620-241-2100
www.peoples.bank<https://www.peoples.bank/>
Refer-A-Friend, Get A Gift! <http://www.referpeopleschecking.com>
[PBT_FullLogo_DarkBlue (1) (Custom).png]
[cid:image003.png@01DB23B1.78456940]<https://www.facebook.com/PeoplesBankandTrustKS>
[cid:image004.png@01DB23B1.78456940]<https://www.instagram.com/peoplesbankandtrust/>
[cid:image005.png@01DB23B1.78456940]<https://twitter.com/PB_TKS>
[cid:image006.png@01DB23B1.78456940]<https://www.linkedin.com/company/82472962>
This e-mail and any files transmitted with it are the Property of Peoples Bank
and Trust and/or its affiliates, are confidential, and are intended solely for
the use of the individual or entity to whom this e-mail is addressed. If you
are not one of the named recipient(s) or otherwise have reason to believe that
you have received this message in error, please notify the sender at
877-998-2100 and delete this message immediately from your computer. Any other
use, retention, dissemination forwarding, printing or copying of this e-mail is
strictly prohibited.
_______________________________________________
PacketFence-users mailing list
PacketFence-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/packetfence-users
