Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

IP and Computer Names shows up as N/A #8398

Open
sinankizar opened this issue Nov 24, 2024 · 5 comments
Open

IP and Computer Names shows up as N/A #8398

sinankizar opened this issue Nov 24, 2024 · 5 comments

Comments

@sinankizar
Copy link

Describe the bug

We have set up and running v14.0 with Ad source and it checks only username and password. We want to check both Computername and Username exist in AD with domain credentials of the user. I have fingerbank integrated too, but the computer names and IPs in audit screen shows up as N/A. I tried to everytinh in mailing list and on the internet, hell, I even tried chatgpt to solve this. Any thoughts on this? And please don't lead me to mailinglist because same issue is available there and no one knows how to solve this.

Screenshots
If applicable, add screenshots to help explain your problem.
image

@E-ThanG
Copy link
Contributor

E-ThanG commented Nov 25, 2024

I'm also building up a new PacketFence 14.0 server. I see the same thing.

I haven't gotten to the point where I need those attributes yet, but I believe that those are populated by DHCP. Is PacketFence receiving DHCP traffic directly or from a forwarder? Is the DHCP listener enabled? I'm planning on installing their forwarding agent on our DHCP servers.

@sinankizar
Copy link
Author

sinankizar commented Nov 25, 2024 via email

@E-ThanG
Copy link
Contributor

E-ThanG commented Nov 25, 2024

https://www.packetfence.org/doc/14.0.0/PacketFence_Installation_Guide.html#_dhcp_remote_sensor and
https://www.packetfence.org/doc/14.0.0/PacketFence_Installation_Guide.html#_production_dhcp_access

Having said that, I'm not sure how realistic it is to use that information for authentication. A device doesn't have to complete DHCP to authenticate, that usually comes later. It depends on how you have your network configured and the vendor's configuration details. Do you really want to delay authentication until after DHCP completes?

If you are using EAP-TLS, the cert contains trusted information. That can be used for authentication.

@sinankizar
Copy link
Author

sinankizar commented Nov 25, 2024 via email

@sinankizar
Copy link
Author

I have installed DHCP forwarder somehow but i really can't say if it is working. No restarts has been made both on pfence and DHCP listener machines. My actual goal is:

Check username/password authentication on AD AND check computername if it is exist in active directory and then give permission to connect on our corporate wifi.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
Development

No branches or pull requests

2 participants