PacketFence v7.4 released

January 25, 2018

The Inverse team is pleased to announce the immediate availability of PacketFence v7.4. This is an important release with new features, enhancements and bug fixes. This release is considered ready for production use and upgrading from previous versions is strongly advised.

Here are the changes included in this release:

New Features

• New database access layer (DAL) for upcoming multi-tenancy support
• New portal module to permanently set roles (PR #2490)
• Added portal module for selecting a role for the device being registered on the portal (PR #2471)
• Added support for Allied Telesis GS950 switches (PR #1866)
• Added ability to update the firewall SSO on RADIUS accounting packets (PR #2662)
• Added a way to define a VLAN by role as a VLAN pool using a VLAN range (PR #2675)

Enhancements

• Added cloning capability in connection profiles (PR #2814) (#2809)
• Read and write timeouts for LDAP connections can now be set (#2613) (PR #2614)
• Keepalived can be configured to detect its peers via unicast instead of multicast (PR #2794)
• Suggest violation identifier when adding a new violation (#2804) (PR #2807)
• Create a priority queue
• Move ReAssignVlan and desAssociate API calls to the priority queue
• Added connection profile SSID filter suggestions based on all the previous SSIDs that have been seen in the locationlog (#2758) (PR #2771)
• Added a description to the switches in the nodes side navigation (#2791) (PR #2795)
• Improved configuration of the captive portal timer bar (via the captive_portal section of pf.conf) (#383) (PR #2762)
• (AD Powershell scripts) Enforce use of TLS in the powershell scripts which is required with the last versions of PacketFence (PR #2788)
• (AD Powershell scripts) Cycle through all the possible Active Directory usernames formats in PacketFence (PR #2788)
• Removed old authentication code sources (#2610)
• Added rule description in listing (#2619)
• Improved documentation (PR #2774) (#2773)
• Set a timeout for database queries for the admin to avoid long running queries slowing the system (#2630) (PR #2659)
• Documentation improvement about MySQL advanced parameters (#266)
• Enhanced localization support in violation module (PR #2759)
• Improved the haproxy HTTP process monitoring
• Improved cluster maintenance script to perform necessary system changes to have the node in maintenance

Bug Fixes

• Moved add and delete buttons to the left to avoid the being cutoff (#2678)
• Fixed "Admin: Multiple ‘Device Type’ options in Nodes tab" (#2789) (PR #2793)
• Configurator: when using a different database name, the fingerbank.conf MySQL section is not updated (#2665) (PR #2787)
• rlm_perl modules are now using syslog instead writing directly to the file (PR #2609)
• Prevent a valid PID from being overwritten at the end of the portal registration if the new PID is default (#2825)
• Auth log is not set to completed after email registration (#2648) (PR #2649)
• Fixed redirects when previewing profiles that use OAuth source (#2882) (PR #2908)

See the complete list of changes and the UPGRADE.asciidoc file for notes about upgrading.