hi, i have a wifi controller which is not part of the pf compatible devices.
But it has been suggested to me that you can use pf in radius enforcement for with it. in practice, the captive portal belongs to the controller but the authentication with Active Directory is done by the radio server (pf). And in fact it is what is indicated in the documentation of pf, 9.4. Technical introduction to the RADIUS application / 9.4.1. Introduction: "The concept of having a RADIUS application is not to use the registration, isolation, or portal features of PacketFence. Everything here is just for RADIUS integration. By default the management interface will be the interface RADIUS If necessary, you can add another interface from Configuration → Network Configuration → Networks → Interface, to do so you need to select Other as the interface type, also you need to select radius as an additional listening daemon. Using RADIUS enforcement, each time a device connects to the network, a corresponding production VLAN will be assigned, depending on the rules in Configuration → Policies and Access Control → Authentication Sources ". In the controller configuration, I created a radio profile with pf IP port 1812 and secret password not enabling the accounting radio in Authentication \ portal \ I gave the SSID in this one, and as Authentication Type I gave "External Radius Server" associated with the beam profile created before I gave PAP and indicator to use the controller's local portal. Finally I enabled HTTPS Redirect. In the pf configuration: I have connected the Active Directory domain in Realms \ Active Directory Domains I have created a local authentication source that connects to that domain and whose test is successful I created a switch object and in the radio tab I entered the same secret password entered in the radio profile of the controller. I created a connection profile that uses this authentication source and in filter I entered switch = 'the switch object created above' When a device tries to connect to wifi, the controller portal comes out. But whatever whatever I type in the username and password boxes, it tells me: "success! Redirection in progress" and then lets me browse freely. The radio communication is there, because if I try to change the secret password in one of the 2 (pf or controller) I get a timeout error instead. Any suggestions? Thank you
_______________________________________________ PacketFence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users
