freeradius: minimal config for attr_filter

This commit is contained in:
jeltz 2022-09-01 03:39:02 +02:00
parent c6afab5728
commit ea843e2f47
Signed by: jeltz
GPG key ID: 800882B66C0C3326
5 changed files with 34 additions and 1 deletions

View file

@ -4,7 +4,7 @@ radiusd__status_server: true
radiusd__clients: {} radiusd__clients: {}
radiusd__enabled_modules_minimal: radiusd__enabled_modules_minimal:
- always - always
- attr_filter # TODO - attr_filter
- cache_eap # TODO - cache_eap # TODO
- detail # TODO - detail # TODO
- detail.log # TODO - detail.log # TODO

View file

@ -52,6 +52,8 @@
- mods-available/always - mods-available/always
- mods-available/eap - mods-available/eap
- mods-available/eap_inner - mods-available/eap_inner
- mods-config/attr_filter/access_challenge
- mods-config/attr_filter/access_reject
notify: notify:
- Restart freeradius - Restart freeradius

View file

@ -0,0 +1,11 @@
{{ ansible_managed | comment }}
attr_filter attr_filter.access_reject {
key = "%{User-Name}"
filename = ${modconfdir}/${.:name}/access_reject
}
attr_filter attr_filter.access_challenge {
key = "%{User-Name}"
filename = ${modconfdir}/${.:name}/access_challenge
}

View file

@ -0,0 +1,10 @@
{{ ansible_managed | comment }}
DEFAULT
EAP-Message =* ANY,
State =* ANY,
Message-Authenticator =* ANY,
Reply-Message =* ANY,
Proxy-State =* ANY,
Session-Timeout =* ANY,
Idle-Timeout =* ANY

View file

@ -0,0 +1,10 @@
{{ ansible_managed | comment }}
DEFAULT
EAP-Message =* ANY,
State =* ANY,
Message-Authenticator =* ANY,
Error-Cause =* ANY,
Reply-Message =* ANY,
MS-CHAP-Error =* ANY,
Proxy-State =* ANY