Re: [PacketFence-users] Accessing Portal Module from 802.1x Network

2022-07-05 Thread Bénoni Delfosse via PacketFence-users
Bonjour,Je suis absent.N'ayant pas accès à ma messagerie pendant cette période, je prendrai connaissance de votre message à mon retour.En cas d'urgence, vous pouvez contacter le Service Desk en téléphonant au 071 84 92 92 ou en envoyant un email à s...@uniwan.be.Cordialement, ---Thank you for your

Re: [PacketFence-users] Problem with Acl with aruba 2530 in Packetfence V11

2022-07-05 Thread Zammit, Ludovic via PacketFence-users
Hello William, Check the Radius reply in the web admin in the Auditing section. I doubt that we change that behavior over the two version. Thanks, Ludovic Zammit Product Support Engineer Principal Cell: +1.613.670.8432 Akamai Technologies - Inverse 145 Broadway Cambridge, MA 02142 Connect with

Re: [PacketFence-users] SSL Cert

2022-07-05 Thread Zammit, Ludovic via PacketFence-users
Hello Dennis, No, there is not documentation around it but it’s pretty straight forward. Which PF version are you running ? Thanks, Ludovic Zammit Product Support Engineer Principal Cell: +1.613.670.8432 Akamai Technologies - Inverse 145 Broadway Cambridge, MA 02142 Connect with Us:

Re: [PacketFence-users] MAC Authentication

2022-07-05 Thread Schneider Lukas via PacketFence-users
I found the error myself: I missed a setting in the switch config > radius scheme packetfence primary authentication 192.168.1.5 1812 key useStrongerSecret primary accounting 192.168.1.5 1813 key useStrongerSecret user-name-format without-domain < this one I missed Best, Lukas Von:

Re: [PacketFence-users] MAC Authentication

2022-07-05 Thread Zammit, Ludovic via PacketFence-users
Hello Lukas, I’m no expert but it says: "Module-Failure-Message = "Rejected: Realm does not have at least one dot separator”” For Mac authentication the username = Mac address of the device only. Thanks, Ludovic Zammit Product Support Engineer Principal Cell: +1.613.670.8432 Akamai Technolog

[PacketFence-users] SSL Cert

2022-07-05 Thread Schüller Dennis via PacketFence-users
Hey all, is there a short HOW-TO implement an SSL Certificat for WebAdmin and One for the Captive-Portal? Thanks! Mit freundlichen Grüßen / with kind regards i. A. Dennis Schüller IT-Systemadministrator Finanzen & Administration dennis.schuel...@nuerburgring.de T +49 (2691) 302 9885 M +49 151

Re: [PacketFence-users] Accessing Portal Module from 802.1x Network

2022-07-05 Thread Michael Brown via PacketFence-users
Checking in on this.  Is there a way to add an option to the status portal (packfence.org/status) to access/create the user's psk or something like that?  I have the dpsk feature working using a custom portal module with a chained option but in order to access/create/populate the PSK the user ha

[PacketFence-users] Problem with Acl with aruba 2530 in Packetfence V11

2022-07-05 Thread William VANDAL via PacketFence-users
Hello, Since we update Packetfence V10.3 to V11, Acl work only with one rule in our Switch Aruba 2530, if we add the 2nd rule, it make error: ''00712 radius: ACL error - entry too long, client E8XXX port 22''. We post this problem last year. Can you give the file configuration in Packetfen

Re: [PacketFence-users] MAC Authentication

2022-07-05 Thread Schneider Lukas via PacketFence-users
Thanks! I was able to solve the problem by sticking to the documentation. I missed adding „user-name-format without-domain“ to the „radius scheme packetfence“. Now the username comes in as Mac address only. Best, Lukas Von: Zammit, Ludovic Gesendet: Montag, 4. Juli 2022 18:04 An: PacketFence-

Re: [PacketFence-users] MAC Authentication

2022-07-05 Thread Zammit, Ludovic via PacketFence-users
Perfect! Thanks, Ludovic Zammit Product Support Engineer Principal Cell: +1.613.670.8432 Akamai Technologies - Inverse 145 Broadway Cambridge, MA 02142 Connect with Us:

Re: [PacketFence-users] EAP-TLS and AD Username Lookup

2022-07-05 Thread Zammit, Ludovic via PacketFence-users
Hello Joe, Yes, PacketFence does exactly what you want it to do. The only thing is that you need to put a LDAP source on a connection profile that catches the EAP TLS authentication. The thing for PF to use the username given from the cert, by default, it would try to match the username as a s