Hello,
We are using Packetfence to implement a captive portal for authenticating guest users connecting via WiFi and being authenticated via Web auth (external portal). The guest user can register using email and SMS. The WiFi equipment is a Huawei Wireless LAN Controller. We have completed the implementation and it works fine. Now we want to apply a daily time limit, different for each type of user. So, on our two authentication sources I applied the attributes: * Email source: access-duration: 1 day, time-balance: 3 hours * SMS source: access-duration: 1 day, time-balance: 12 hours But the behavior is as follows: after the time-balance has been consumed, a time-expiration security event is created but it has no release date. Now the guest user is stuck in quarantine. The only remediation is for the portal administrator to manually release the security event and the user can connect again. We obviously cannot do that for our (hundreds of expected) daily users. I tried to edit the time-expiration security event and enable the 'dynamic window' but it has no effect. The only thing that kinda works it to set a time value in the 'window' property of the time-expiration security event, but that is not desirable since: * we cannot distinguish between email/SMS-registered users, * window time starts counting after the user has exhausted time time-balance which can be anytime during the day. So, is there another way to implement daily time limits for my guest users. It should be straightforward and I don't see why such a feature-rich and powerful NAC suite as Packetfence is would not be able to do it. Thanks Christos Ntokos ----------------------------------------------------------------- Network Services and Infrastructure Department Digital Governance Unit, University of Ioannina, GR
_______________________________________________ PacketFence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users
