Switch Block network access for clientsĪllow control of network access to clients configured in the integration options by adding MAC addresses. The difference between first seen and last seen needs to be less than 15 minutes and the client can not have a fixed IP, hostname or name associated with it. String representing a device ID related to a UniFi integration.Ĭlean up clients on the UniFi Controller that has only been associated with the controller for a short period of time. Try to get a wireless client to reconnect to the network. Related Issue Services Service unifi.reconnect_client Failing to have synchronized clocks will lead to Home Assistant failing to mark a device as home. If Home Assistant and the UniFi controller are running on separate machines or VMs ensure that all clocks are synchronized. Presence detection depends on accurate time configuration between Home Assistant and the UniFi controller. By default devices are marked as away 300 seconds after they were last seen. This platform allows you to detect presence by looking at devices connected to a Ubiquiti UniFi controller. It is recommended that you run the UniFi controller in a dedicated virtual machine to avoid that situation. If you run the UniFi controller on the same operating system as Home Assistant there may be conflicts in ports if you have the MQTT integration as well.
The UniFi controller can either be a dedicated hardware device (UniFi’s cloud key), or as software on any Linux system.
Note the Dream Machine Pro and Cloud Key Gen2 plus updated to UniFi OS needs the port to be 443. Make sure to give it the right permissions for the functions you want to use. You can do this in the manage users section on the UniFi OS dashboard.
A user who uses the Ubiquiti cloud will not work. UniFi OSįor UniFi OS a local-only user needs to be created. If you want blocking of network access or POE control as well you would need to have ‘admin’ permissions. If all you want to use is the device tracker then it is recommended that you create a limited user that has read-only permissions for the UniFi device tracker. The UniFi controller allows you to create multiple users on it besides the main administrator. Some advanced options are available when “Advanced Mode” is enabled on your user profile page. Enter what UniFi integration you want to change options on and press the cog wheel. Extra configuration of the integrationĪll configuration options are offered from the front end. The user needs administrator privileges in order to control switches.
(Note: if the other side will be an EdgeOS device like an ER-X instead of a USG, turn off Dynamic Routing. Set up the VPN at Site B, using Site A’s subnet, the public IP addresses of Site B and Site A, and the same Pre-Shared Key.
Set up the VPN at Site A, using Site B’s subnet and the public IP addresses of Site A and Site B, respectively, I used a password generator to create a 40-character Pre-Shared Key:Ģ.
IPsec only allows entering IP addresses, not hostnames, so if the IP addresses are dynamic and they change, you’ll need to update both sides again. Here’s what worked.įrom my research, you can’t use Auto configuration when you have two controllers, so I used manual, mostly following advice in this thread. I have two UniFi USGs, each on its own local controller, and I wanted to set up a site-to-site IPsec VPN.