| Anonymous | Login | 2024-04-24 19:39 EDT |  |
| Main | My View | View Issues | Change Log | Roadmap |
| View Issue Details [ Jump to Notes ] | [ Issue History ] [ Print ] | |||||||
| ID | Project | Category | View Status | Date Submitted | Last Update | |||
| 0001028 | PacketFence | configuration | public | 2010-07-08 10:46 | 2011-01-26 15:42 | |||
| Reporter | obilodeau | |||||||
| Assigned To | obilodeau | |||||||
| Priority | normal | Severity | feature | Reproducibility | N/A | |||
| Status | closed | Resolution | fixed | |||||
| Platform | OS | OS Version | ||||||
| Product Version | ||||||||
| Target Version | 2.0.0 | Fixed in Version | 2.0.0 | |||||
| Summary | 0001028: adding radius clients needs to be performed from the command line | |||||||
| Description | In a 802.1x, Mac Authentication or Mac Address Bypass context, the switches that communicates with PacketFence need to be added to a freeradius clients (or user don't remember) flat file. This should be automatically done based on what is in switches.conf and a new radius shared secret parameter should be added in switches.conf. | |||||||
| Tags | No tags attached. | |||||||
| fixed in git revision | ||||||||
| fixed in mtn revision | 5ccf483d9ddf63a82285dcd6ed8b6dc50a471be2 | |||||||
| Attached Files | ||||||||
 Relationships |
|||||||||||
|
|||||||||||
 Relationships |
|
Notes |
|
|
(0001632) obilodeau (reporter) 2010-08-25 16:22 |
We will take an approach where the clients settings are stored in the database. We decided to store them internally inside the pf schema and not in an external database because it is less complex (no new db, new db user, etc. to handle). For info check: http://github.com/alandekok/freeradius-server/blob/v2.1.x/raddb/sql.conf [^] http://old.nabble.com/NAS-list-with-MySQL-td14971644.html [^] Tasks: Test - Try out the SQL module in the lab as a PoC, if it works with only nas client activated that's great! Integration: - Integrate the schema in pf's schema. change the name to radius_nas instead of nas - Add a new param in switches.conf: radius_shared_secret or something similar - On PF startup, at the config check phase (where we generate the templates) populate the NAS table in the database based on the switches IPs and shared secrets - Do not forget that this will then require freeradius2 packages to be installed. Minimally: freeradius2, freeradius2-perl and freeradius2-mysql |
|
(0001721) obilodeau (reporter) 2010-10-07 16:56 |
Successfully got the SQL module to use a nas table. Changes required: - install freeradius2-mysql - add table to database - in radiusd.conf: - uncomment $INCLUDE sql.conf under modules { ... } - add sql under instantiate { ... } - in sql.conf - setup login, password, hostname, database name - uncomment readclients = yes - set nas_table (if not default) |
|
(0001723) obilodeau (reporter) 2010-10-12 12:09 |
New radiusSecret parameter in switches.conf and pf::freeradius module are created. However nothing is done by default. See addons/freeradius-integration/README on help to enable that feature. This will probably change in the future but for now, until we can fully control FreeRADIUS (config, start/stop/restart, etc.) from within PacketFence, it was preferred to keep things simple (avoiding everyone the need to change their config when upgrading). When things will be more integrated this will likely change. |
|
Notes |
|
Issue History |
|||
| Date Modified | Username | Field | Change |
| 2010-07-08 10:46 | obilodeau | New Issue | |
| 2010-07-08 10:46 | obilodeau | Status | new => assigned |
| 2010-07-08 10:46 | obilodeau | Assigned To | => obilodeau |
| 2010-07-08 10:46 | obilodeau | Relationship added | child of 0001027 |
| 2010-08-25 16:22 | obilodeau | Note Added: 0001632 | |
| 2010-08-25 16:28 | obilodeau | Relationship added | related to 0001051 |
| 2010-10-07 16:56 | obilodeau | Note Added: 0001721 | |
| 2010-10-12 12:09 | obilodeau | mtn revision | => 5ccf483d9ddf63a82285dcd6ed8b6dc50a471be2 |
| 2010-10-12 12:09 | obilodeau | Note Added: 0001723 | |
| 2010-10-12 12:09 | obilodeau | Status | assigned => resolved |
| 2010-10-12 12:09 | obilodeau | Fixed in Version | => 1.9.2 |
| 2010-10-12 12:09 | obilodeau | Resolution | open => fixed |
| 2010-11-19 14:23 | obilodeau | Fixed in Version | 1.9.2 => trunk |
| 2010-11-19 14:25 | obilodeau | Target Version | 1.10.0 => 2.0.0 |
| 2010-12-15 11:37 | obilodeau | Fixed in Version | trunk => 2.0.0 |
| 2011-01-26 15:42 | obilodeau | Status | resolved => closed |
|
Issue History |
| Copyright © 2000 - 2012 MantisBT Group |
 |