Refactor lmn_wlan role
- Consolidate `lmn_wlan`, `lmn_wlan_nm`, and `lmn_wlan_8021x` into single `lmn_wlan` role.
- Implement a check for the availability of the radius-server during the EAP-TLS rollout.
- Enhance variable support with a standardized naming schema:
- Mode selection via `wlan` variable (`none`, `psk`, `eap-tls`).
- EAP-TLS CA configuration (CA information, email address, CA password).
- Introduce a switch to force the (re-)issue of existing certificates.
- PSK configuration through `wlan_ssid` and `wlan_password`.
- Add a check to verify if the radius certificate is revoked.
- Ensure required packages and services are only installed and configured if the `wifi` variable is set.
This commit is contained in:
Finn Hercke
parent
9f1c60eefd
commit
a68aaeb81c
9 changed files with 561 additions and 538 deletions
21
roles/lmn_wlan/templates/ssid.nmconnection.j2
Normal file
21
roles/lmn_wlan/templates/ssid.nmconnection.j2
Normal file
|
|
@ -0,0 +1,21 @@
|
|||
[connection]
|
||||
id=FVS-devices
|
||||
type=wifi
|
||||
interface-name={{ ansible_interfaces | select('search', 'wl.+') | first }}
|
||||
|
||||
[wifi]
|
||||
mode=infrastructure
|
||||
ssid=FVS-devices
|
||||
|
||||
[wifi-security]
|
||||
key-mgmt=wpa-psk
|
||||
psk={{ wifipasswd }}
|
||||
|
||||
[ipv4]
|
||||
method=auto
|
||||
|
||||
[ipv6]
|
||||
addr-gen-mode=default
|
||||
method=auto
|
||||
|
||||
[proxy]
|
||||
Loading…
Add table
Add a link
Reference in a new issue