Light

yonasm / eduroam_radius Goto Github PK

View Code? Open in Web Editor NEW

This project forked from ubuntunet/eduroam_radius

0.0 2.0 0.0 100 KB

Ansible Playbook for deploying an eduroam Identity Provider

Home Page: http://eduroam.org

eduroam_radius's Introduction

Ansible Playbook for an eduroam IdP/Radius server

Provisioning

Clone the repository from Github. The recursive is needed to clone the newrelic submodule as well.
```
  git clone --recursive https://github.com/ubuntunet/eduroam_idp.git
```
Change into the newly created directory
```
  cd eduroam_idp
```

Copy the inventory template

  cp inventories/template inventories/<tld_institution>

Open your new inventory and replace
- with the actual URL/IP of your server
- <tld_institution> with your actual inventory file name

Copy the group_vars template

  cp group_vars/template group_vars/<tld_institution>

Adopt the variables in group_vars/<tld_institution> to your liking
Create the secret.yml file that contains your sensitive information. Add your credentials.
```
  cp group_vars/secrets.yml.example group_vars/secrets.yml
```
Run the playbook. Whenever you change something in the playbook, just replay this command.
```
  ansible-playbook -i inventories/<tld_institution> eduroam_idp.yml
```

How do I check if it works?

Using radtest

    radtest [user] [password] localhost:[port (default is 1812)][nas-port-number(default 0)][shared_secret]

and check for an "Access-Accept" in the response.

Run radtest remotely if you have enabled the static test user

  ansible radius -i inventories/<tld_institution> -a "radtest test mySecret localhost:1812 0 testing123"

Run the Freeradius service manually to see what is happening at the server side
- Log into your machine
- Stop the freeradius daemon
```
    sudo service freeradius stop 
```
- Start it manually in debug mode
```
    sudo freeradius -X
```

Using eapol_test

http://deployingradius.com/scripts/eapol_test/

You need to enable the eapol_test role in your group_vars file and rerun the playbook first.

WIP

How to add a new client?

Copy/Paste the client entry TestAP in your group_vars file
Change the name and the variable values
Add the shared_secret to secrets.yml
Re-run the playbook

What do the additional roles do?

eduroam_radius's People

Contributors

Watchers

Recommend Projects

React

A declarative, efficient, and flexible JavaScript library for building user interfaces.
Vue.js

🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
Typescript

TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
TensorFlow

An Open Source Machine Learning Framework for Everyone
Django

The Web framework for perfectionists with deadlines.
Laravel

A PHP framework for web artisans
D3

Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

javascript

JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
web

Some thing interesting about web. New door for the world.
server

A server is a program made to process requests and deliver data to clients.
Machine learning

Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Visualization

Some thing interesting about visualization, use data art
Game

Some thing interesting about game, make everyone happy.

Recommend Org

Facebook

We are working to build community through open source technology. NB: members must have two-factor auth.
Microsoft

Open source projects and samples from Microsoft.
Google

Google ❤️ Open Source for everyone.
Alibaba

Alibaba Open Source for everyone
D3

Data-Driven Documents codes.
Tencent

China tencent open source team.