PacketFence - BTS - PacketFence
View Issue Details
IDProjectCategoryView StatusDate SubmittedLast Update
0001027PacketFenceradiuspublic2010-07-08 10:432012-08-14 09:15
Reporterobilodeau 
Assigned Tofgaudreault 
PrioritynormalSeverityfeatureReproducibilityN/A
StatusclosedResolutionfixed 
PlatformOSOS Version
Product Version 
Target Version2.2.0Fixed in Version2.2.0 
fixed in git revision
fixed in mtn revision
Summary0001027: freeradius needs to be configured manually
DescriptionTo make the world a better place, PacketFence should automatically configure radius.

This is a meta-bug that tracks individuals tasks.

I looked at cpan or webmin to find perl modules to manipulate the files but I haven't found anything. There was one module to handle the client file but it was not maintained.
Steps To Reproduce
Additional Information
TagsNo tags attached.
Relationships
parent of 0001028closed obilodeau adding radius clients needs to be performed from the command line 
has duplicate 0001158closed fgaudreault freeradius2-packetfence package 
related to 0001051closed obilodeau radiusd restarted by PacketFence 
Attached Files? freeradius2-pf.spec (3,287) 2011-03-15 14:46
https://www.packetfence.org/bugs/file_download.php?file_id=72&type=bug
? freeradius2-packetfence-1.0.0-1.el5.noarch.rpm (5,673) 2011-03-15 15:27
https://www.packetfence.org/bugs/file_download.php?file_id=75&type=bug
gz freeradius2-packetfence-1.0.0.tar.gz (1,590) 2011-03-15 15:27
https://www.packetfence.org/bugs/file_download.php?file_id=76&type=bug
Issue History
Date ModifiedUsernameFieldChange
2010-07-08 10:43obilodeauNew Issue
2010-07-08 10:43obilodeauStatusnew => assigned
2010-07-08 10:43obilodeauAssigned To => obilodeau
2010-07-08 10:46obilodeauRelationship addedparent of 0001028
2010-08-25 16:27obilodeauRelationship addedparent of 0001051
2010-08-25 16:43obilodeauNote Added: 0001633
2010-10-12 12:10obilodeauNote Added: 0001724
2010-10-12 12:11obilodeauNote Edited: 0001724
2010-11-19 14:25obilodeauTarget Version1.10.0 => 2.0.0
2011-01-18 09:30obilodeauTarget Version2.0.0 => 2.1.0
2011-03-03 15:16obilodeauTarget Version2.1.0 => +1
2011-03-03 15:18obilodeauTarget Version+1 => +2
2011-03-09 11:29fgaudreaultAssigned Toobilodeau => fgaudreault
2011-03-09 11:32fgaudreaultNote Added: 0001908
2011-03-09 11:33fgaudreaultNote Edited: 0001908
2011-03-14 10:14fgaudreaultNote Added: 0001919
2011-03-15 14:46fgaudreaultFile Added: freeradius2-packetfence-1.0.0-1.el5.noarch.rpm
2011-03-15 14:46fgaudreaultFile Added: freeradius2-packetfence-1.0.0.tar.gz
2011-03-15 14:46fgaudreaultFile Added: freeradius2-pf.spec
2011-03-15 14:49fgaudreaultNote Added: 0001927
2011-03-15 15:04fgaudreaultFile Deleted: freeradius2-packetfence-1.0.0.tar.gz
2011-03-15 15:04fgaudreaultFile Deleted: freeradius2-packetfence-1.0.0-1.el5.noarch.rpm
2011-03-15 15:05fgaudreaultFile Added: freeradius2-packetfence-1.0.0-1.el5.noarch.rpm
2011-03-15 15:05fgaudreaultFile Added: freeradius2-packetfence-1.0.0.tar.gz
2011-03-15 15:27fgaudreaultFile Deleted: freeradius2-packetfence-1.0.0-1.el5.noarch.rpm
2011-03-15 15:27fgaudreaultFile Deleted: freeradius2-packetfence-1.0.0.tar.gz
2011-03-15 15:27fgaudreaultFile Added: freeradius2-packetfence-1.0.0-1.el5.noarch.rpm
2011-03-15 15:27fgaudreaultFile Added: freeradius2-packetfence-1.0.0.tar.gz
2011-03-15 15:28fgaudreaultNote Added: 0001928
2011-03-15 17:32obilodeauNote Added: 0001931
2011-03-16 16:28fgaudreaultNote Added: 0001933
2011-03-17 11:28fgaudreaultNote Added: 0001934
2011-03-17 14:06fgaudreaultRelationship deletedparent of 0001051
2011-03-17 14:06fgaudreaultRelationship addedrelated to 0001051
2011-03-17 14:07fgaudreaultNote Added: 0001936
2011-03-17 14:07fgaudreaultStatusassigned => closed
2011-03-17 14:07fgaudreaultResolutionopen => fixed
2011-03-17 14:07fgaudreaultFixed in Version => +1
2011-03-17 14:15fgaudreaultStatusclosed => resolved
2011-03-17 14:15fgaudreaultFixed in Version+1 => trunk
2011-03-22 11:39fgaudreaultRelationship addedhas duplicate 0001158
2011-05-04 11:33obilodeauFixed in Versiontrunk => 2.2.0
2011-05-04 11:40obilodeauStatusresolved => closed
2011-10-25 09:05obilodeauTarget Version+2 => 2.2.0
2012-08-14 09:15obilodeauCategoryradius module => radius

Notes
(0001633)
obilodeau   
2010-08-25 16:43   
we should provide a site for /etc/raddb/sites-available/ and then enable it. It would be the less intrusive way of getting our config in there. I should try to find other RPM packages doing that.
(0001724)
obilodeau   
2010-10-12 12:10   
(edited on: 2010-10-12 12:11)
The clients.conf piece is resolved by 0001028 however it is not enabled by default (see addons/freeradius-integration/README).

In here I realized that we will probably need a radiusd=enable parameter under [vlan] in pf.conf and perform the appropriate nas_popuplate_... call if it's activated.
(0001908)
fgaudreault   
2011-03-09 11:32   
(edited on: 2011-03-09 11:33)
Will build a package with basic radius config. The only thing that the user would need to build is the clients.conf file.
(0001919)
fgaudreault   
2011-03-14 10:14   
More than that, i'll create a virtual host named packetfence, and a virtual host for the inner-tunnel named packetfence-tunnel. I should be able to create custom radiusd.conf and eap.conf without too much problems. Of course, we will build .rpmsave of the original files.

Expected package name : freeradius2-packetfence

I will try to find some time this week to build the .spec and release an rpm on our repo.
(0001927)
fgaudreault   
2011-03-15 14:49   
Added the spec, source, and generated RPM file.

The RPM adds two virtual host (packetfence and packetfence-tunnel). It replaces the default radius configurations reflecting that change. Furthermore, we keep the original config copy in file.pfsave files. When you uninstall the package, we replace the current radius configurations with your previous ones.
(0001928)
fgaudreault   
2011-03-15 15:28   
Fixed couple of things. Should be all set now.
(0001931)
obilodeau   
2011-03-15 17:32   
Before merge
- put in same spec as current packetfence.spec
- place our addons/802.1X/packetfence.pm in a proper location under /etc/raddb/
- tell the user to configure /etc/raddb/packetfence.pm (or provide a script to do so a la mysql_secure...)
- update admin guide to use this RPM instead of manual config (keep manual config as an appendix)

then we can merge that.

After we can look into getting rid of /etc/raddb/clients.conf as specified in: 0001051
(0001933)
fgaudreault   
2011-03-16 16:28   
Task remaining :
- Add the content of the tar.gz to freeradius-integration folder
- Merge the configuration in the packetfence.spec
- Commit the changes
- Update the admin guide
(0001934)
fgaudreault   
2011-03-17 11:28   
Commited in trunk.
(0001936)
fgaudreault   
2011-03-17 14:07   
Commited and tested.