Re: [PacketFence-users] SCEP over Intune dose not work

Hi Gents, We have the same question (well almost) and have been working with the identity team at MS (Been open for 4 weeks now with many meetings but we are like a dog with a bone wanting to know the why not just the fix). You will most likely find that it works fine with a TPM 2.0 and fails

Re: [PacketFence-users] RADIUS Tracking Issues & Best Practice

Hello Trevor, in the coming new PacketFence release we added that: https://github.com/inverse-inc/packetfence/pull/6772 Which allow you to create a radius probe account in order to test if the server is available. Btw access-reject also means that the server is available. Regards Fabrice Le

Re: [PacketFence-users] SCEP over Intune dose not work

I have a debian cluster running on my side wit the raddebug command here: /usr/sbin/raddebug and it´s coming from the freeradius package. root@cluster3:/usr/local/pf# apt-file search raddebug freeradius: /usr/sbin/raddebug Le lun. 21 févr. 2022 à 10:27, Adrian Damaschek < adrian.damasc...@technic

[PacketFence-users] RADIUS Tracking Issues & Best Practice

Hello, I'm using PacketFence with Aruba Network switches. I have enabled RADIUS tracking on the switches to determine if the PacketFence servers are active responding to requests. Even though this username isn't active and the request fails, it still sends the failed message back to the switch

Re: [PacketFence-users] SCEP over Intune dose not work

Still no I don’t have any commands starting with radd I am using packetfence 11 on Debian if that makes a difference where the debug commands are Regards Adrian From: Fabrice Durand Sent: Monday, 21 February 2022 16:16 To: Adrian Damaschek Cc: packetfence-users Subject: Re: [PacketFence-use

Re: [PacketFence-users] SCEP over Intune dose not work

Sorry a typo raddebug -f /usr/local/pf/var/run/radiusd.sock -d 3000 For the MTU i think that it needs to be done on the AP (to match the VPN value) and maybe on the vpn server too. Le lun. 21 févr. 2022 à 09:58, Adrian Damaschek < adrian.damasc...@technicondesign.com> a écrit : > Hi Fabrice, >

Re: [PacketFence-users] SCEP over Intune dose not work

Hi Fabrice, So I get a command not found, but radsniff was there. And I get the packages, they show up, 2022-02-21 15:54:30.435928 (17) Access-Request Id 18 enp6s18::58613 -> :1812 +0.416 User-Name = "test2" NAS-IP-Address = 10.100.90.106 Service-Type = Framed-User

Re: [PacketFence-users] SCEP over Intune dose not work

Hello Adrian, glad to know that it works for you. Btw I have no clue why the TPM module cannot be used. I know that we got an issue with certificates provided by intune where Freeradius complained that it wasn´t able to decrypt too. There are also issues with Android and intune if the certificate

[PacketFence-users] error during sendmail

Dear friends, I'm usgin ad old version of Packetfence , PF 8.3.0 and now I need to send a text when a violation is generated. For this reason I add a message in the configuration of one of the triggers but after restart pfqueue and pfdetect I've got this problem: Feb 21 10:49:58 pfsrv pfqueue:

Re: [PacketFence-users] Packetfence PKI and EAP-TLS

Hello, I did have this error message today and what I figured out it means that the certificate presented by the radius server is not trusted by the client. You either have to go to Config -> System Config -> SSL Certficates -> Radius And either replace the radius certificate with one that i

Re: [PacketFence-users] Packetfence PKI and EAP-TLS

Hello, Was a solution ever found for this issue? I have the exact same problem and have not been able to find a solution yet. When I copy paste the CA public key into Configuration → System Configuration → SSL Certificates → RADIUS → Edit, it returns the error “Failed verifying chain: error st

Re: [PacketFence-users] SCEP over Intune dose not work

Hello Fabrice, So this works now, I can get the cert. But it seems that I have some APs now that don’t want to connect. What combines the APs that don’t want to use the RADIUS server they are all over SiteToSite VPNs. Is this a InTune specific issue as well or possibly related to some MTU prob

[PacketFence-users] Packetfence - RADIUS Audit Log Entry - Aruba IAP with Google LDAP and MS AAD - Regardin

Hi Team, Running PF v11 on ESXi Wireless 802.1x authentication against Google LDAPs and MS AAD The following is the RADIUS log entry I noticed when I am trying to authenticate my phone *RADIUS Audit Log Entry Node Information* MAC Address: XX:XX:XX:XX:XX:XX Auth Status: Reject Auth Status: Googl

Re: [PacketFence-users] SCEP over Intune dose not work

Hello Fabrice, Well, you just made my week. I was using the TPM if present, Software if not, AND because it was a 500 error, I was thinking this was server sided. Hence I did not even play around with the client settings. I just got the system to enroll me a cert. now off to make it work with w

[PacketFence-users] PF - Google LDAPs - Radius Audit Log Entry - Regarding

Hi Team, The following failure message I got in the Log *Module-Failure-Message = "Config item \"realm[tanuvas.org.in ].oauth2.cache_password\" does not exist"* How to resolve it? Regards, Thirunavukkarasu ___ PacketFence-users mai