Skip to content
GitLab
Projects
Groups
Snippets
/
Help
Help
Support
Community forum
Keyboard shortcuts
?
Submit feedback
Sign in
Toggle navigation
Menu
Open sidebar
Projets publics
puppet-freeradius
Commits
33d8503d
Commit
33d8503d
authored
Mar 13, 2017
by
Jonathan Gazeley
Browse files
Provide facility to enable/disable EAP types
parent
8b97e7cb
Changes
2
Hide whitespace changes
Inline
Side-by-side
manifests/module/eap.pp
View file @
33d8503d
...
...
@@ -67,6 +67,10 @@ define freeradius::module::eap (
Optional
[
Freeradius
::
Boolean
]
$peap_require_client_cert
=
undef
,
Optional
[
Freeradius
::
Boolean
]
$mschapv2_send_error
=
undef
,
Optional
[
String
]
$mschapv2_identity
=
undef
,
Boolean
$eap_md5
=
true
,
Boolean
$eap_leap
=
true
,
Boolean
$eap_gtc
=
true
,
Boolean
$eap_peap
=
true
,
)
{
freeradius::module
{
$name
:
...
...
templates/eap.erb
View file @
33d8503d
...
...
@@ -65,6 +65,7 @@ eap {
# Supported EAP-types
<%-
if
@eap_md5
-%>
#
# We do NOT recommend using EAP-MD5 authentication
# for wireless connections. It is insecure, and does
...
...
@@ -72,6 +73,7 @@ eap {
#
md5 {
}
<%-
end
-%>
#
# EAP-pwd -- secure password-based authentication
...
...
@@ -108,6 +110,7 @@ eap {
}
<%-
end
-%>
<%-
if
@eap_leap
-%>
# Cisco LEAP
#
# We do not recommend using LEAP in new deployments. See:
...
...
@@ -122,7 +125,9 @@ eap {
#
leap {
}
<%-
end
-%>
<%-
if
@eap_gtc
-%>
# Generic Token Card.
#
# Currently, this is only permitted inside of EAP-TTLS,
...
...
@@ -156,6 +161,7 @@ eap {
#
auth_type =
<%=
@gtc_auth_type
%>
}
<%-
end
-%>
## Common TLS configuration for TLS-based EAP types
#
...
...
@@ -755,7 +761,7 @@ eap {
<%-
end
-%>
}
<%-
if
@eap_peap
-%>
## EAP-PEAP
#
...
...
@@ -891,7 +897,8 @@ eap {
<%-
if
@peap_require_client_cert
-%>
require_client_cert =
<%=
@peap_require_client_cert
%>
<%-
end
-%>
}
}
<%-
end
-%>
#
# This takes no configuration.
...
...
Write
Preview
Supports
Markdown
0%
Try again
or
attach a new file
.
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment