Commit 4c4ab953 authored by Angel L. Mateo's avatar Angel L. Mateo
Browse files

Add freeradius::module::eap to configure EAP

This define configures EAP in freeradius
parent e576ddc6
# == Class: freeradius::eap
#
# Define to configure eap FreeRADIUS module
#
define freeradius::module::eap (
$ensure = 'present',
$default_eap_type = 'md5',
Integer $timer_expire = 60,
Freeradius::Boolean $ignore_unknown_eap_types = 'no',
Freeradius::Boolean $cisco_accounting_username_bug = 'no',
Freeradius::Integer $max_sessions = "\${max_requests}",
Boolean $eap_pwd = false,
Optional[Variant[String,Integer]] $pwd_group = undef,
Optional[String] $pwd_server_id = undef,
Optional[Integer] $pwd_fragment_size = undef,
Optional[String] $pwd_virtual_server = undef,
Optional[String] $gtc_challenge = undef,
String $gtc_auth_type = 'PAP',
String $tls_config_name = 'tls-common',
Optional[String] $tls_private_key_password = undef,
String $tls_private_key_file = "\${certdir}/server.pem",
String $tls_certificate_file = "\${certdir}/server.pem",
String $tls_ca_file = "\${certdir}/ca.pem",
Optional[Freeradius::Boolean] $tls_auto_chain = undef,
Optional[String] $tls_psk_identity = undef,
Optional[String] $tls_psk_hexphrase = undef,
String $tls_dh_file = "\${certdir}/dh",
Optional[String] $tls_random_file = undef,
Optional[Integer] $tls_fragment_size = undef,
Optional[Freeradius::Boolean] $tls_include_length = undef,
Optional[Freeradius::Boolean] $tls_check_crl = undef,
Optional[Freeradius::Boolean] $tls_check_all_crl = undef,
String $tls_ca_path = "\${cadir}",
Optional[String] $tls_check_cert_issuer = undef,
Optional[String] $tls_check_cert_cn = undef,
String $tls_cipher_list = 'DEFAULT',
Optional[Freeradius::Boolean] $tls_disable_tlsv1_2 = undef,
String $tls_ecdh_curve = 'prime256v1',
Freeradius::Boolean $tls_cache_enable = 'yes',
Integer $tls_cache_lifetime = 24,
Integer $tls_cache_max_entries = 255,
Optional[String] $tls_cache_name = undef,
Optional[String] $tls_cache_persist_dir = undef,
Optional[Freeradius::Boolean] $tls_verify_skip_if_ocsp_ok = undef,
Optional[String] $tls_verify_tmpdir = undef,
Optional[String] $tls_verify_client = undef,
Freeradius::Boolean $tls_ocsp_enable = 'no',
Freeradius::Boolean $tls_ocsp_override_cert_url = 'yes',
String $tls_ocsp_url = 'http://127.0.0.1/ocsp/',
Optional[Freeradius::Boolean] $tls_ocsp_use_nonce = undef,
Optional[Integer] $tls_ocsp_timeout = undef,
Optional[Freeradius::Boolean] $tls_ocsp_softfail = undef,
Optional[String] $tls_virtual_server = undef,
String $ttls_default_eap_type = 'md5',
Freeradius::Boolean $ttls_copy_request_to_tunnel = 'no',
Freeradius::Boolean $ttls_use_tunneled_reply = 'no',
String $ttls_virtual_server = 'inner-tunnel',
Optional[Freeradius::Boolean] $ttls_include_length = undef,
Optional[Freeradius::Boolean] $ttls_require_client_cert = undef,
String $peap_default_eap_type = 'mschapv2',
Freeradius::Boolean $peap_copy_request_to_tunnel = 'no',
Freeradius::Boolean $peap_use_tunneled_reply = 'no',
Optional[Freeradius::Boolean] $peap_proxy_tunneled_request_as_eap = undef,
String $peap_virtual_server = 'inner-tunnel',
Optional[Freeradius::Boolean] $peap_soh = undef,
Optional[String] $peap_soh_virtual_server = undef,
Optional[Freeradius::Boolean] $peap_require_client_cert = undef,
Optional[Freeradius::Boolean] $mschapv2_send_error = undef,
Optional[String] $mschapv2_identity = undef,
) {
freeradius::module{$name:
ensure => $ensure,
content => template('freeradius/eap.erb'),
}
}
This diff is collapsed.
type Freeradius::Boolean = Enum['yes','no']
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment