aurore/ansible
aurore/ansible
11
2
Fork 0
Code Issues 1 Pull requests 13 Releases Wiki Activity

freeradius: add eap_inner module

Browse source
This commit is contained in:
jeltz 2022-09-01 02:21:12 +02:00
parent 553b371797
commit c6afab5728
Signed by: jeltz
GPG key ID: 800882B66C0C3326
4 changed files with 25 additions and 8 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

1
roles/freeradius/defaults/main.yml
View file

@ -19,6 +19,7 @@ radiusd__enabled_modules_minimal:
- preprocess # TODO - preprocess # TODO
- realm # TODO - realm # TODO
- unpack # TODO - unpack # TODO
- eap_inner
- utf8 - utf8
radiusd__enabled_modules: [] radiusd__enabled_modules: []
radiusd__tls_cipher_list: DEFAULT radiusd__tls_cipher_list: DEFAULT

1
roles/freeradius/tasks/main.yml
View file

@ -51,6 +51,7 @@
- mods-available/utf8 - mods-available/utf8
- mods-available/always - mods-available/always
- mods-available/eap - mods-available/eap
- mods-available/eap_inner
notify: notify:
- Restart freeradius - Restart freeradius

14
roles/freeradius/templates/mods-available/eap.j2
View file

@ -3,9 +3,14 @@
eap { eap {
default_eap_type = peap default_eap_type = peap
timer_expire = 60
type = peap
ignore_unknown_eap_types = no ignore_unknown_eap_types = no
cisco_accounting_username_bug = no cisco_accounting_username_bug = no
timer_expire = 60
max_sessions = ${max_requests} max_sessions = ${max_requests}
tls-config tls-common { tls-config tls-common {
@ -37,11 +42,4 @@ eap {
virtual_server = inner-tunnel virtual_server = inner-tunnel
} }
gtc {
auth_type = local
}
mschapv2 {
}
} }

17
roles/freeradius/templates/mods-available/eap_inner.j2 Normal file
View file

@ -0,0 +1,17 @@
{{ ansible_managed | comment }}
eap inner-eap {
default_eap_type = gtc
type = gtc
type = mschapv2
gtc {
auth_type = local
}
mschapv2 {
}
}