Greetings fellow PacketFence users, I’ve been getting to learn PacketFence on my own by a combination of experiments and reading the manual and have gotten myself almost across the finish line. I’ve gotten clustering set up, and the EAP-TLS pipeline set up as well as device provisioning. Everything works with the exception of two issues I encountered, which are pretty show-stopping.
The first issue is, clients logging in with the certificate they were issued for some reason is triggering packetfence to arbitrarily revoke said certificates. The revocation reason is KeyCompromise. I also observed PacketFence making many failed insertions into the pki_revoked_certs table with empty data, so I’m not precluding the possibility of a bug. I haven’t figured out what is triggering this behavior, and AFACT, the logs aren’t being meaningful to me. The second issue, revoked certificates still seem to work. If anyone has any idea on what could be triggering this, and why revoked certificates aren’t actually getting denied by the RADIUS server, I would be really grateful. I’m running PF 15.0, if that helps. Best, Maximilian Doerr _______________________________________________ PacketFence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users
