From 216bc43ef7a270925ac597806c06030354ba9149 Mon Sep 17 00:00:00 2001
From: Jonas Gunz <himself@jonasgunz.de>
Date: Tue, 19 Jul 2022 00:29:05 +0200
Subject: freeradius

---
 roles/freeradius/templates/ldap.j2 | 20 ++++++++++++++++++++
 1 file changed, 20 insertions(+)
 create mode 100644 roles/freeradius/templates/ldap.j2

(limited to 'roles/freeradius/templates/ldap.j2')

diff --git a/roles/freeradius/templates/ldap.j2 b/roles/freeradius/templates/ldap.j2
new file mode 100644
index 0000000..d7e10da
--- /dev/null
+++ b/roles/freeradius/templates/ldap.j2
@@ -0,0 +1,20 @@
+# vi: ft=conf
+# This file is managed by Ansible. Manual changes will be reverted.
+
+ldap {
+        server   = "{{ radius.ldap.server }}"
+        identity = "{{ radius.ldap.bind_user }}"
+        password = "{{ radius.ldap.bind_pwd }}"
+        user {
+                base_dn  = "{{ radius.ldap.user_base }}"
+                filter   = "{{ radius.ldap.user_filter }}"
+        }
+        sasl {
+                # This block needs to exist, but can be empty.
+                # SASL mechanism
+                #mech = 'PLAIN'
+        }
+        update {
+                control:Password-With-Header    += 'userPassword'
+        }
+}
-- 
cgit v1.2.3