Re: [PacketFence-users] Integration of PacketFence with Cisco WLC for Guests

Hello, https://packetfence.org/doc/PacketFence_Network_Devices_Configuration_Guide.html#_cisco_2 Thanks, Ludovic Zammit lzam...@inverse.ca :: +1.514.447.4918 (x145) ::

Re: [PacketFence-users] DPSK Authentication - Meraki Access Points

Checking in on this.  I put a message up on Meraki and it looks like the problem is the RADIUS Access-Accept message is not returning the Tunnel-Password with the user's dpsk.  It is only returning the VLAN ID.   Is there something missing in my config to make that happen? Thanks.  On

Re: [PacketFence-users] Integration of PacketFence with Cisco WLC for Guests

Ezeh, I researched on this subject recently when trying to evaluate PF for a small Cisco based WiFi. Someone did quite a good write-up about it. https://community.cisco.com/t5/wireless-and-mobility/cisco-wlc-and-packetfence-captive-portal-configuration-guide/td-p/2958678 Eugene From:

Re: [PacketFence-users] AD Authenticationn source

Hello Boris, Good find! Thanks, Ludovic Zammit lzam...@inverse.ca :: +1.514.447.4918 (x145) :: www.inverse.ca Inverse inc. :: Leaders behind SOGo (http://www.sogo.nu ) and PacketFence (http://packetfence.org

Re: [PacketFence-users] captive portal: the captive portal does not appear when I am in the registration Vlan

i want to use webauth for computers that don't have 8021x supplicant. currently I have the impression that everything is working correctly. however when I connect a computer that does not have an 8021x supplicant it moves into the registration vlan and it gets an IP address. when i try to launch a

Re: [PacketFence-users] Two questions regarding re-branding captive portal

Hello, You can’t find it because it’s dynamic. The source file is under : html/captive-portal/templates/signin.html That’s the default but you connection profile signing.html can be modified. Edit it in the web admin under Connection profile > Connection profile Name > File > signing.html It

Re: [PacketFence-users] Ip accounting...

Hello Enrico, By default PacketFence has rules to cleanup Accounting data since it has a tendency to grow very big and thus slow down the db to a point it can not work properly. On your version you should have a cron job that cleanup that from memory, check under /etc/cron.d/packetfence it

Re: [PacketFence-users] PF 10.2 - 802.1x for wired clients proxied to another radius server?

Hello Peter, Since PacketFence 6, the eduroam process changed a lot. Before, the eduroam radius authentication was sent to a specific virtual host on 1815. Now it’s not the case anymore, it’s handle on the 1812. Are you using the eduroam SSID to authenticate something like local AD users?

Re: [PacketFence-users] captive portal: the captive portal does not appear when I am in the registration Vlan

Hello, Do you want to do Web Auth or VLAN enforcement for the portal ? You can’t do both. Thanks, Ludovic Zammit lzam...@inverse.ca :: +1.514.447.4918 (x145) :: www.inverse.ca Inverse inc. :: Leaders behind SOGo (http://www.sogo.nu

Re: [PacketFence-users] pf & wired 802.1x authentication | windows updates

Hello, Yes, it would work as long the device has the LE Root Ca installed in the cert store by default. PacketFence already support LE on RADIUS natively since version 10. Thanks, Ludovic Zammit lzam...@inverse.ca :: +1.514.447.4918 (x145) :: www.inverse.ca

Re: [PacketFence-users] Wildcard SSL certificate installation on PF

Hi Eugene, The list has always been alive, from where we are. :-) Anyway: I would encourage you to take a look a Let's Encrypt certificates with packetfence. I think they are a bit more secure than a wildcard certificate, plus they are free and work very well. (there are some threads on

Re: [PacketFence-users] pf & wired 802.1x authentication | windows updates

Hi, Please, if I may, one qustion more: On 11/9/20 8:47 PM, Ludovic Zammit wrote: If it’s the case, one solution to fix it. Issue a certificate on PacketFence (RADIUS service) that would be trusted by your clients. Issue a certificate from a MS PKI for example (AD CS). We are running