Skip to content
Snippets Groups Projects

ics-ans-role-radius

Ansible role to install a radius server.

Role Variables

radius_secret: testing123
# List of network clients
# Shall be a list of dict with name and ipaddr keys
radius_network_clients: []
# radius_network_clients:
#   - name: cslab-mgmt-clients
#     ipaddr: 172.30.0.0/23
#   - name: cslab-routenet-clients
#     ipaddr: 172.30.255.0/27

# List of users
# Shall be a list of dict with mac and vlan_id keys
radius_users: []
# radius_users:
#   - mac: "02:42:42:8a:5d:d9"
#     vlan_id: 1900

The radius_users list can be populated from CSEntry inventory by using the csentry_inventory_to_mac_vlan_id filter plugin:

radius_users: "{{ hostvars | csentry_inventory_to_mac_vlan_id(domain='cslab.esss.lu.se' }}"

The domain argument is used to filter the interfaces. Only interfaces part of the cslab.esss.lu.se domain will be returned in this case.

Example Playbook

- hosts: servers
  roles:
    - role: ics-ans-role-radius

License

BSD 2-clause