Try SpotterManage RADIUS server and its parameters
| "added in version" 1.0.0 of dellemc.enterprise_sonic"
Authors: Niraimadaiselvam M (@niraimadaiselvamm)
This plugin has a corresponding action plugin.
Install with ansible-galaxy collection install dellemc.enterprise_sonic:==2.4.0
collections:
- name: dellemc.enterprise_sonic
version: 2.4.0This module provides configuration management of radius server parameters on devices running Enterprise SONiC.
# Using deleted
#
# Before state:
# -------------
#
#sonic(config)# do show radius-server
#---------------------------------------------------------
#RADIUS Global Configuration
#---------------------------------------------------------
#nas-ip-addr: 1.2.3.4
#statistics : True
#timeout : 10
#auth-type : chap
#key : chap
#retransmit : 3
#--------------------------------------------------------------------------------
#HOST AUTH-TYPE KEY AUTH-PORT PRIORITY TIMEOUT RTSMT VRF SI
#--------------------------------------------------------------------------------
#localhost mschapv2 local 52 2 20 2 mgmt Ethernet12
#myhost chap local 53 3 23 3 mgmt Ethernet24
#---------------------------------------------------------
#RADIUS Statistics
#---------------------------------------------------------
#
- name: Merge radius configurations
dellemc.enterprise_sonic.sonic_radius_server:
config:
auth_type: chap
nas_ip: 1.2.3.4
statistics: true
timeout: 10
servers:
host:
- name: localhost
state: deleted
# After state:
# ------------
#sonic(config)# do show radius-server
#---------------------------------------------------------
#RADIUS Global Configuration
#---------------------------------------------------------
#timeout : 5
#auth-type : pap
#key : chap
#retransmit : 3
#--------------------------------------------------------------------------------
#HOST AUTH-TYPE KEY AUTH-PORT PRIORITY TIMEOUT RTSMT VRF SI
#--------------------------------------------------------------------------------
#myhost chap local 53 3 23 3 mgmt Ethernet24
# Using deleted
#
# Before state:
# -------------
#
#sonic(config)# do show radius-server
#---------------------------------------------------------
#RADIUS Global Configuration
#---------------------------------------------------------
#nas-ip-addr: 1.2.3.4
#statistics : True
#timeout : 10
#auth-type : chap
#key : chap
#retransmit : 3
#--------------------------------------------------------------------------------
#HOST AUTH-TYPE KEY AUTH-PORT PRIORITY TIMEOUT RTSMT VRF SI
#--------------------------------------------------------------------------------
#localhost mschapv2 local 52 2 20 2 mgmt Ethernet12
#myhost chap local 53 3 23 3 mgmt Ethernet24
#---------------------------------------------------------
#RADIUS Statistics
#---------------------------------------------------------
#
- name: Merge radius configurations
dellemc.enterprise_sonic.sonic_radius_server:
config:
state: deleted
# After state:
# ------------
#sonic(config)# do show radius-server
#---------------------------------------------------------
#RADIUS Global Configuration
#---------------------------------------------------------
#timeout : 5
#auth-type : pap
# Using merged
#
# Before state:
# -------------
#
#sonic(config)# do show radius-server
#---------------------------------------------------------
#RADIUS Global Configuration
#---------------------------------------------------------
#
- name: Merge radius configurations
dellemc.enterprise_sonic.sonic_radius_server:
config:
auth_type: chap
key: chap
nas_ip: 1.2.3.4
statistics: true
timeout: 10
retransmit: 3
servers:
host:
- name: localhost
auth_type: mschapv2
key: local
priority: 2
port: 52
retransmit: 2
timeout: 20
source_interface: Eth 12
vrf: mgmt
state: merged
# After state:
# ------------
#
#sonic(config)# do show radius-server
#---------------------------------------------------------
#RADIUS Global Configuration
#---------------------------------------------------------
#nas-ip-addr: 1.2.3.4
#statistics : True
#timeout : 10
#auth-type : chap
#key : chap
#retransmit : 3
#--------------------------------------------------------------------------------
#HOST AUTH-TYPE KEY AUTH-PORT PRIORITY TIMEOUT RTSMT VRF SI
#--------------------------------------------------------------------------------
#localhost mschapv2 local 52 2 20 2 mgmt Ethernet12
#---------------------------------------------------------
#RADIUS Statistics
#---------------------------------------------------------
#
# Using replaced
#
# Before state:
# -------------
#
#sonic(config)# do show radius-server
#---------------------------------------------------------
#RADIUS Global Configuration
#---------------------------------------------------------
#timeout : 10
#auth-type : pap
#key configured : Yes
#--------------------------------------------------------------------------------------
#HOST AUTH-TYPE KEY-CONFIG AUTH-PORT PRIORITY TIMEOUT RTSMT VRF SI
#--------------------------------------------------------------------------------------
#1.2.3.4 pap No 49 1 5 - - Ethernet0
#
- name: Replace radius configurations
sonic_radius_server:
config:
auth_type: mschapv2
timeout: 20
servers:
- host:
name: 1.2.3.4
auth_type: mschapv2
key: mschapv2
source_interface: Ethernet12
state: replaced
#
# After state:
# ------------
#
#sonic(config)# do show radius-server
#---------------------------------------------------------
#RADIUS Global Configuration
#---------------------------------------------------------
#timeout : 20
#auth-type : mschapv2
#key configured : No
#--------------------------------------------------------------------------------------
#HOST AUTH-TYPE KEY-CONFIG AUTH-PORT PRIORITY TIMEOUT RTSMT VRF SI
#--------------------------------------------------------------------------------------
#1.2.3.4 mschapv2 Yes 1812 - - - - Ethernet12
#
# Using overridden
#
# Before state:
# -------------
#
#sonic(config)# do show radius-server
#---------------------------------------------------------
#RADIUS Global Configuration
#---------------------------------------------------------
#timeout : 10
#auth-type : pap
#key configured : Yes
#--------------------------------------------------------------------------------------
#HOST AUTH-TYPE KEY-CONFIG AUTH-PORT PRIORITY TIMEOUT RTSMT VRF SI
#--------------------------------------------------------------------------------------
#1.2.3.4 pap No 49 1 5 - - Ethernet0
#11.12.13.14 chap Yes 49 10 5 3 - -
#
- name: Override radius configurations
sonic_radius_server:
config:
auth_type: mschapv2
key: mschapv2
timeout: 20
servers:
- host:
name: 1.2.3.4
auth_type: mschapv2
key: mschapv2
source_interface: Ethernet12
- host:
name: 10.10.11.12
auth_type: chap
timeout: 30
priority: 2
port: 49
state: overridden
state:
choices:
- merged
- replaced
- overridden
- deleted
default: merged
description:
- Specifies the operation to be performed on the radius server configured on the device.
- In case of merged, the input mode configuration will be merged with the existing
radius server configuration on the device.
- In case of deleted the existing radius server mode configuration will be removed
from the device.
- In case of replaced, the existing radius server configuration will be replaced with
provided configuration.
- In case of overridden, the existing radius server configuration will be overridden
with the provided configuration.
type: str
config:
description:
- Specifies the radius server related configuration.
suboptions:
auth_type:
choices:
- pap
- chap
- mschapv2
default: pap
description:
- Specifies the authentication type of the radius server.
type: str
key:
description:
- Specifies the key of the radius server.
type: str
nas_ip:
description:
- Specifies the network access server of the radius server.
type: str
retransmit:
description:
- Specifies the re-transmit value of the radius server.
type: int
servers:
description:
- Specifies the servers list of the radius server.
suboptions:
host:
description:
- Specifies the host details of the radius servers list.
elements: dict
suboptions:
auth_type:
choices:
- pap
- chap
- mschapv2
description:
- Specifies the authentication type of the radius server host.
type: str
key:
description:
- Specifies the key of the radius server host.
type: str
name:
description:
- Specifies the name of the radius server host.
type: str
port:
default: 1812
description:
- Specifies the port of the radius server host.
type: int
priority:
description:
- Specifies the priority of the radius server host.
type: int
retransmit:
description:
- Specifies the retransmit of the radius server host.
type: int
source_interface:
description:
- Specifies the source interface of the radius server host.
type: str
timeout:
description:
- Specifies the timeout of the radius server host.
type: int
vrf:
description:
- Specifies the vrf of the radius server host.
type: str
type: list
type: dict
statistics:
description:
- Specifies the statistics flag of the radius server.
type: bool
timeout:
default: 5
description:
- Specifies the timeout of the radius server.
type: int
type: dict
after:
description: The resulting configuration model invocation.
returned: when changed
sample: "The configuration returned will always be in the same format\n of the parameters\
\ above.\n"
type: list
before:
description: The configuration prior to the model invocation.
returned: always
sample: "The configuration returned will always be in the same format\n of the parameters\
\ above.\n"
type: list
commands:
description: The set of commands pushed to the remote device.
returned: always
sample:
- command 1
- command 2
- command 3
type: list