mirror of
https://github.com/kanidm/kanidm.git
synced 2025-02-23 12:37:00 +01:00
3b3c029e30
* fix: outdated poetry.toml entries * fix: better handling errors on startup in radius_entrypoint * fix: radiusd eap config, removing dh_file per error message in freeradius startup * fix: updating docs to be a little clearer and reflect new config * fix: fixing up handling dhparam, trying to throw better errors * fix: unified how the config path is found in pykanidm radius, new default config path --------- Co-authored-by: Firstyear <william@blackhats.net.au>
19 lines
572 B
TOML
19 lines
572 B
TOML
uri = "https://example.com"
|
|
|
|
# The auth token for the service account
|
|
auth_token = "ABC..."
|
|
|
|
# default vlan for groups that don't specify one.
|
|
radius_default_vlan = 99
|
|
|
|
# if the user is in one of these Kanidm groups,
|
|
# then they're allowed to authenticate
|
|
radius_required_groups = ["radius_access_allowed@idm.example.com"]
|
|
|
|
radius_groups = [{ spn = "radius_access_allowed@idm.example.com", vlan = 10 }]
|
|
|
|
radius_clients = [
|
|
{ name = "localhost", ipaddr = "127.0.0.1", secret = "testing123" },
|
|
{ name = "docker", ipaddr = "172.17.0.0/16", secret = "testing123" },
|
|
]
|