Hi again, On 24/10/22 16:27, James Andrewartha via PacketFence-users wrote:
I'm trying to work out how to get PacketFence to send a CoA to an Aerohive (XIQ) AP after a guest registers and is approved by sponsor. I have the AP switch object configured to map by switch role, which sends a Filter-ID I can match on. If I disconnect and reconnect (and clear auth cache on the AP) I get the correct role, but I'm trying to work out how to trigger a CoA so that step isn't needed.
Reading through the source, it looks like CoA to change role isn't implemented, based on this line in ReAssignVlan() in api.pm:
$logger->error("Connection type is not wired. Could not reassign VLAN.");
So there would need to be some work done to allow CoA for wireless. Which is fairly well supported these days, off the top of my head, Extreme (XCC, WiNG, XIQ), Aruba (Controller and Instant), Cisco (WLC and Meraki), Mist can all do it in various fashions.
While investigating, I was looking at the files pf/Switch and was trying to work out what the difference between say AeroHIVE.pm, AeroHIVE/AP.pm and AeroHIVE/Access_Point.def are. The developer's guide says to use .def, so is that the new way and the others are old? When creating a switch, AeroHIVE::Access_Point shows a button to view a switch template, but AeroHIVE::AP doesn't. Selectin AeroHIVE::AP makes a setting for External Portal Enforcement visible, I guess because it has ExternalPortal in pf::SwitchSupports?
Thanks, -- James Andrewartha Network & Projects Engineer Christ Church Grammar School Claremont, Western Australia Ph. (08) 9442 1757 Mob. 0424 160 877 _______________________________________________ PacketFence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users
