puppet_x_eos_eapi 0.2.0

data/lib/puppet_x/eos/modules/ospf.rb

@@ -0,0 +1,129 @@
+#
+# Copyright (c) 2014, Arista Networks, Inc.
+# All rights reserved.
+#
+# Redistribution and use in source and binary forms, with or without
+# modification, are permitted provided that the following conditions are
+# met:
+#
+#   Redistributions of source code must retain the above copyright notice,
+#   this list of conditions and the following disclaimer.
+#
+#   Redistributions in binary form must reproduce the above copyright
+#   notice, this list of conditions and the following disclaimer in the
+#   documentation and/or other materials provided with the distribution.
+#
+#   Neither the name of Arista Networks nor the names of its
+#   contributors may be used to endorse or promote products derived from
+#   this software without specific prior written permission.
+#
+# THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+# "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+# LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+# A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL ARISTA NETWORKS
+# BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
+# CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
+# SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR
+# BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY,
+# WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE
+# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN
+# IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+#
+
+##
+# PuppetX is the toplevel namespace for working with Arista EOS nodes
+module PuppetX
+  ##
+  # Eos is module namesapce for working with the EOS command API
+  module Eos
+    ##
+    # The Ospf class provides a base class instance for working with
+    # instances of OSPF
+    #
+    class Ospf
+      ##
+      # Initialize instance of Ospf
+      #
+      # @param [PuppetX::Eos::Eapi] api An instance of Eapi
+      #
+      # @return [PuppetX::Eos::Ospf]
+      def initialize(api)
+        @api = api
+      end
+
+      ##
+      # Returns the base interface hash representing physical and logical
+      # interfaces in EOS using eAPI
+      #
+      # Example
+      #   {
+      #     "instances": {
+      #       "1": { "router_id": <String> }
+      #     }
+      #   }
+      #
+      # @return [Hash] returns an Hash
+      def getall
+        result = @api.enable('show ip ospf')
+        instances = {}
+        result[0]['vrfs']['default']['instList'].map do |inst, attrs|
+          instances[inst] = { router_id: attrs['routerId'] }
+        end
+        { instances: instances }
+      end
+
+      ##
+      # Creates a new instance of OSPF routing
+      #
+      # @param [String] inst The instance id to create
+      #
+      # @return [Boolean] True if the commands succeed otherwise False
+      def create(inst)
+        @api.config("router ospf #{inst}") == [{}]
+      end
+
+      ##
+      # Deletes an instance of OSPF routing
+      #
+      # @param [String] inst The instance id to delete
+      #
+      # @return [Boolean] True if the commands succeed otherwise False
+      def delete(inst)
+        @api.config("no router ospf #{inst}") == [{}]
+      end
+
+      ##
+      # Defaults an instance of OSPF routing
+      #
+      # @param [String] inst The instance id to delete
+      #
+      # @return [Boolean] True if the commands succeed otherwise False
+      def default(inst)
+        @api.config("default router ospf #{inst}") == [{}]
+      end
+
+      ##
+      # Configures the OSPF process router-id
+      #
+      # @param [String] inst The instance of ospf to configure
+      # @param [Hash] opts The configuration parameters
+      # @option opts [string] :value The value to set the router-id to
+      # @option opts [Boolean] :default The value should be set to default
+      #
+      # @return [Boolean] True if the commands succeed otherwise False
+      def set_router_id(inst, opts = {})
+        value = opts[:value] || false
+        default = opts[:default] || false
+
+        cmds = ["router ospf #{inst}"]
+        case default
+        when true
+          cmds << 'default router-id'
+        when false
+          cmds << (value ? "router-id #{value}" : 'no router-id')
+        end
+        @api.config(cmds) == [{}, {}]
+      end
+    end
+  end
+end

data/lib/puppet_x/eos/modules/portchannel.rb

@@ -0,0 +1,277 @@
+#
+# Copyright (c) 2014, Arista Networks, Inc.
+# All rights reserved.
+#
+# Redistribution and use in source and binary forms, with or without
+# modification, are permitted provided that the following conditions are
+# met:
+#
+#   Redistributions of source code must retain the above copyright notice,
+#   this list of conditions and the following disclaimer.
+#
+#   Redistributions in binary form must reproduce the above copyright
+#   notice, this list of conditions and the following disclaimer in the
+#   documentation and/or other materials provided with the distribution.
+#
+#   Neither the name of Arista Networks nor the names of its
+#   contributors may be used to endorse or promote products derived from
+#   this software without specific prior written permission.
+#
+# THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+# "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+# LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+# A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL ARISTA NETWORKS
+# BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
+# CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
+# SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR
+# BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY,
+# WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE
+# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN
+# IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+#
+
+##
+# PuppetX is the toplevel namespace for working with Arista EOS nodes
+module PuppetX
+  ##
+  # Eos is module namesapce for working with the EOS command API
+  module Eos
+    ##
+    # The Portchannel class provides a base class instance for working with
+    # logical link aggregation interfaces.
+    #
+    class Portchannel
+      ##
+      # Initialize innstance of Portchannel
+      #
+      # @param [PuppetX::Eos::Eapi] api An instance of Eapi
+      #
+      # @return [PuppetX::Eos::Interface]
+      def initialize(api)
+        @api = api
+      end
+
+      ##
+      # Retrievess a port channel interface from the running-configuration
+      #
+      # Example
+      #   {
+      #     "name": <String>,
+      #     "lacp_mode": [active, passive, off],
+      #     "members": [Array],
+      #     "lacp_fallback": [static, individual],
+      #     "lacp_timeout": <0-900>
+      #   }
+      #
+      # @param [String] name The name of the port-channel interface
+      #
+      # @return [Hash] A hash of the port channel attributes and properties
+      def get(name)
+        members = get_members name
+        result = @api.enable("show interfaces #{name}")
+        interface = result.first['interfaces']
+
+        attr_hash = { name: name }
+        attr_hash[:members] = members
+        attr_hash[:lacp_mode] = get_lacp_mode members
+        attr_hash[:lacp_fallback] = get_lacp_fallback interface
+        attr_hash[:lacp_timeout] = interface['fallbackTimeout']
+        attr_hash
+      end
+
+      ##
+      # Retrieves all logical port-channel interfaces from the running config
+      #
+      # @return [Array] an array of port-channel attribute hashes
+      def getall
+        result = @api.enable('show interfaces')
+        interfaces = result.first['interfaces']
+        resp = []
+        interfaces.each do |key, value|
+          resp << get(key) if value['hardware'] == 'portChannel'
+        end
+        resp
+      end
+
+      ##
+      # Retreives the member interfaces for the specified channel group
+      #
+      # @param [String] name The name of the port-channel interface to return
+      #     members for
+      #
+      # @return [Array] An array of interface names that are members of the
+      #   specified channel group id
+      def get_members(name)
+        result = @api.enable("show #{name} all-ports",
+                             format: 'text')
+        result.first['output'].scan(/Ethernet\d+/)
+      end
+
+      ##
+      # Create a logical port-channel interface
+      #
+      # @param [String] name The name of the interface to create
+      #
+      # @return [Boolean] True if the create succeeds otherwise False
+      def create(name)
+        @api.config("interface #{name}") == [{}]
+      end
+
+      ##
+      # Deletes a logical port-channel interface
+      #
+      # @param [String] name The name of the interface to create
+      #
+      # @return [Boolean] True if the create succeeds otherwise False
+      def delete(name)
+        @api.config("no interface #{name}") == [{}]
+      end
+
+      ##
+      # Defaults a logical port-channel interface
+      #
+      # @param [String] name The name of the interface to create
+      #
+      # @return [Boolean] True if the create succeeds otherwise False
+      def default(name)
+        @api.config("default interface #{name}") == [{}]
+      end
+
+      ##
+      # Adds a new member interface to the channel group
+      #
+      # @param [String] name The name of the port channel to add the interface
+      # @param [String] member The name of the interface to add
+      #
+      # @return [Boolean] True if the create succeeds otherwise False
+      def add_member(name, member)
+        id = name.match(/\d+/)
+        @api.config(["interface #{member}",
+                     "channel-group #{id} mode on"]) == [{}, {}]
+      end
+
+      ##
+      # Removes a member interface from the channel group
+      #
+      # @param [String] name The name of the port-channel to add the interface
+      # @param [String] member The name of the interface to remove
+      #
+      # @return [Boolean] True if the create succeeds otherwise False
+      def remove_member(_name, member)
+        @api.config(["interface #{member}", 'no channel-group']) == [{}, {}]
+      end
+
+      ##
+      # Configures the member interfaces for the port-channel interface
+      #
+      # @param [String] name The name of the port-channel to assign the
+      #   the members to
+      # @param [Array] members The array of members to add to the port-channel
+      def set_members(name, members)
+        current = get_members(name)
+        (current - members).each do |member|
+          remove_member(name, member)
+        end
+        (members - current).each do |member|
+          add_member(name, member)
+        end
+      end
+
+      ##
+      # Configures the lacp mode for the interface
+      #
+      # @param [String] name The name of the port-channel interface
+      # @param [String] mode The LACP mode to configure
+      #
+      # @return [Boolean] True if the create succeeds otherwise False
+      def set_lacp_mode(name, mode)
+        id = name.match(/\d+/)
+        members = get_members name
+
+        commands = []
+        config = []
+
+        members.each do |member|
+          commands << "interface #{member}" << 'no channel-group'
+          config << "interface #{member}" << "channel-group #{id} mode #{mode}"
+        end
+
+        config.unshift(*commands)
+        result =  @api.config(config)
+        config.size == result.size
+      end
+
+      ##
+      # Configures the lacp fallback value
+      #
+      # @param [String] name The name of the interface to configure
+      # @param [Hash] opts The configuration parameters for the interface
+      # @option opts [string] :value The value to set the value to
+      # @option opts [Boolean] :default The value should be set to default
+      #
+      # @return [Boolean] True if the commands succeed otherwise False
+      def set_lacp_fallback(name, opts = {})
+        value = opts[:value]
+        default = opts[:default] || false
+
+        cmds = ["interface #{name}"]
+        case default
+        when true
+          cmds << 'default port-channel lacp fallback'
+        when false
+          cmds << (value.nil? ? "no port-channel lacp fallback #{value}" : \
+                                "port-channel lacp fallback #{value}")
+        end
+        @api.config(cmds) == [{}, {}]
+      end
+
+      ##
+      # Configures the lacp fallback timeout value
+      #
+      # @param [String] name The name of the interface to configure
+      # @param [Hash] opts The configuration parameters for the interface
+      # @option opts [string] :value The value to set the timeout to
+      # @option opts [Boolean] :default The value should be set to default
+      #
+      # @return [Boolean] True if the commands succeed otherwise False
+      def set_lacp_timeout(name, opts = {})
+        value = opts[:value]
+        default = opts[:default] || false
+
+        cmds = ["interface #{name}"]
+        case default
+        when true
+          cmds << 'default port-channel lacp fallback timeout'
+        when false
+          cmds << (value.nil? ? 'no port-channel lacp fallback timeout' : \
+                                "port-channel lacp fallback timeout #{value}")
+        end
+        @api.config(cmds) == [{}, {}]
+      end
+
+      private
+
+      def get_lacp_mode(members)
+        return '' if members.empty?
+        name = members.first
+        result = @api.enable("show running-config interfaces #{name}",
+                             format: 'text')
+        m = /channel-group\s\d+\smode\s(?<lacp>.*)/
+            .match(result.first['output'])
+        m['lacp']
+      end
+
+      def get_lacp_fallback(attr_hash)
+        if attr_hash['fallbackEnabled']
+          case attr_hash['fallbackEnabledType']
+          when 'fallbackStatic'
+            fallback = 'static'
+          when 'fallbackIndividual'
+            fallback = 'individual'
+          end
+        end
+        fallback || ''
+      end
+    end
+  end
+end

data/lib/puppet_x/eos/modules/radius.rb

@@ -0,0 +1,367 @@
+# encoding: utf-8
+
+module PuppetX
+  ##
+  # Eos is module namesapce for working with the EOS command API
+  module Eos
+    ##
+    # Radius provides instance methods to retrieve and set radius configuration
+    # values.
+    class Radius < ModuleBase
+      DEFAULT_AUTH_PORT = 1812
+      DEFAULT_ACCT_PORT = 1813
+
+      # Regular expression to extract a radius server's attributes from the
+      # running-configuration text.  The explicit [ ] spaces enable line
+      # wrappping and indentation with the /x flag.
+      SERVER_REGEXP = /radius-server[ ]host[ ](.*?)
+                       (?:[ ]auth-port[ ](\d+))?
+                       (?:[ ]acct-port[ ](\d+))?
+                       (?:[ ]timeout[ ](\d+))?
+                       (?:[ ]deadtime[ ](\d+))?
+                       (?:[ ]retransmit[ ](\d+))?
+                       (?:[ ]key[ ](\d+)[ ](\w+))?\s/x
+
+      GROUP_MEMBER_REGEXP = /server[ ](.*?)
+                             (?:[ ]auth-port[ ](\d+))?
+                             (?:[ ]acct-port[ ](\d+))?\s/x
+
+      # Regular expression to extract a radius server's attributes from the
+      # running-configuration text.  The explicit [ ] spaces enable line
+      # wrappping and indentation with the /x flag.
+      SERVER_GROUP_REGEXP = /aaa group server radius (.*)/
+
+      ##
+      # getall Returns an Array with a single resource Hash describing the
+      # current state of the global radius configuration on the target device.
+      # This method is intended to be used by a provider's instances class
+      # method.
+      #
+      # The resource hash returned contains the following information:
+      #  * name: ('settings')
+      #  * enable: (true | false) if radius functionality is enabled.  This is
+      #    always true for EOS.
+      #  * key: (String) the key either in plaintext or hashed format
+      #  * key_format: (Integer) e.g. 0 or 7
+      #  * timeout: (Integer) seconds before the timeout period ends
+      #  * retransmit_count: (Integer), e.g. 3, attempts after first timeout
+      #    expiry.
+      #
+      # @api public
+      #
+      # @return [Array<Hash>] Single element Array of resource hashes
+      def getall
+        config = running_configuration
+        rsrc_hsh = radius_global_defaults
+        rsrc_hsh.merge!(parse_global_key(config))
+        rsrc_hsh.merge!(parse_global_timeout(config))
+        rsrc_hsh.merge!(parse_global_retransmit(config))
+        [rsrc_hsh]
+      end
+
+      ##
+      # servers returns an Array of radius server resource hashes.  Each hash
+      # describes the current state of the radius server and is suitable for
+      # use in initializing a radius_server provider.
+      #
+      # The resource hash returned contains the following information:
+      #  * hostname: hostname or ip address
+      #  * key: (String) the key either in plaintext or hashed format
+      #  * key_format: (Fixnum) e.g. 0 or 7
+      #  * timeout: (Fixnum) seconds before the timeout period ends
+      #  * retransmit_count: (Integer), e.g. 3, attempts after first timeout
+      #    expiry.
+      #  * group: (String) Server group associated with this server.
+      #  * deadtime: (Fixnum) number of minutes to ignore an unresponsive
+      #   server.
+      #  * acct_port: (Fixnum) Port number to use for accounting.
+      #  * accounting_only: (Boolean) Enable this server for accounting only.
+      #  * auth_port: (Fixnum) Port number to use for authentication
+      #
+      # @api public
+      #
+      # @return [Array<Hash<Symbol,Object>>] Array of resource hashes
+      def servers
+        config = running_configuration
+        tuples = config.scan(SERVER_REGEXP)
+        tuples.map do |(host, authp, acctp, tout, dead, tries, keyfm, key)|
+          hsh = { auth_port: DEFAULT_AUTH_PORT, acct_port: DEFAULT_ACCT_PORT }
+          hsh[:hostname]         = host       if host
+          hsh[:auth_port]        = authp.to_i if authp
+          hsh[:acct_port]        = acctp.to_i if acctp
+          hsh[:timeout]          = tout.to_i  if tout
+          hsh[:retransmit_count] = tries.to_i if tries
+          hsh[:deadtime]         = dead.to_i  if dead
+          hsh[:key_format]       = keyfm.to_i if keyfm
+          hsh[:key]              = key        if key
+          hsh
+        end
+      end
+
+      ##
+      # server_groups retrieves a list of radius server groups from the target
+      # device.
+      #
+      # @api public
+      #
+      # @return [Array<Hash<Symbol,Object>>] Array of resource hashes
+      def server_groups
+        config = running_configuration
+        tuples = config.scan(SERVER_GROUP_REGEXP)
+        tuples.map do |(name)|
+          { name: name, servers: parse_group_servers(config, name) }
+        end
+      end
+
+      ##
+      # parse_group_servers parses the list of servers associated with a radius
+      # server group given a group name and a running configuration text.
+      #
+      # @param [String] config The running configuration text.
+      #
+      # @param [String] name The name of the server group to parse.
+      #
+      # @api private
+      #
+      # @return [Array<Hash<Symbol,Object>] Array of server attributes
+      def parse_group_servers(config, name)
+        regexp = /aaa group server radius #{name}(.*?)!/m
+        mdata = regexp.match(config)
+        if mdata
+          tuples = mdata[1].scan(GROUP_MEMBER_REGEXP)
+          tuples.collect do |(hostname, auth_port, acct_port)|
+            {
+              hostname: hostname,
+              auth_port: auth_port ? auth_port.to_i : DEFAULT_AUTH_PORT,
+              acct_port: acct_port ? acct_port.to_i : DEFAULT_ACCT_PORT
+            }
+          end
+        else
+          Array.new
+        end
+      end
+
+      ##
+      # update_server_group updates a radius server group given an Array of
+      # server attributes and the name of the server group.  The update happens
+      # by first deleting the existing group if it exists then creating it
+      # again with all of the specified servers.
+      #
+      # @param [String] name The name of the server group to update
+      #
+      # @param [Array<Hash<Symbol,Object>>] servers The array of servers to
+      #   associate with the server group.  This hash should have at least the
+      #   :hostname key.
+      #
+      # @api public
+      #
+      # @return [Boolean] true if no errors
+      def update_server_group(opts = {})
+        cmd = "aaa group server radius #{opts[:name]}"
+        api.config("no #{cmd}")
+        cmds = [cmd]
+        opts[:servers].each do |hsh|
+          server = "server #{hsh[:hostname]}"
+          server << " auth-port #{hsh[:auth_port] || DEFAULT_AUTH_PORT}"
+          server << " acct-port #{hsh[:acct_port] || DEFAULT_ACCT_PORT}"
+          cmds << server
+        end
+        result = api.config(cmds)
+        !result.find { |r| r != {} }
+      end
+
+      ##
+      # remove_server_group removes a radius server group by name.  This API
+      # call maps to the `no aaa group server radius <name>` command.
+      #
+      # @option opts [String] :name ('RAD-SV2') The name of the radius server
+      #   group to remove.
+      #
+      # @api public
+      #
+      # @return [Boolean] true if no errors
+      def remove_server_group(opts = {})
+        result = api.config("no aaa group server radius #{opts[:name]}")
+        result == [{}]
+      end
+
+      ##
+      # update_server configures a radius server resource on the target device.
+      # This API method maps to the `radius server host` command, e.g.
+      # `radius-server host 10.11.12.13 auth-port 1024 acct-port 2048 timeout
+      # 30 retransmit 5 key 7 011204070A5955`
+      #
+      # @api public
+      #
+      # @return [Boolean] true if there are no errors
+      def update_server(opts = {})
+        retransmit = opts[:retransmit_count]
+        key_format = opts[:key_format] || 7
+        cmd = "radius-server host #{opts[:hostname]}"
+        cmd << " auth-port #{opts[:auth_port]}"   if opts[:auth_port]
+        cmd << " acct-port #{opts[:acct_port]}"   if opts[:acct_port]
+        cmd << " timeout #{opts[:timeout]}"       if opts[:timeout]
+        cmd << " deadtime #{opts[:deadtime]}"     if opts[:deadtime]
+        cmd << " retransmit #{retransmit}"        if retransmit
+        cmd << " key #{key_format} #{opts[:key]}" if opts[:key]
+        result = api.config(cmd)
+        result == [{}]
+      end
+
+      ##
+      # remove_server removes the SNMP server identified by the hostname,
+      # auth_port, and acct_port attributes.
+      #
+      # @api public
+      #
+      # @return [Boolean] true if no errors
+      def remove_server(opts = {})
+        cmd = "no radius-server host #{opts[:hostname]}"
+        cmd << " auth-port #{opts[:auth_port]}" if opts[:auth_port]
+        cmd << " acct-port #{opts[:acct_port]}" if opts[:acct_port]
+        result = api.config(cmd)
+        result == [{}]
+      end
+
+      ##
+      # radius_global_defaults returns the default values for the radius_global
+      # resource.  This is in a single method to keep the information in one
+      # place.  If a value is explicitly configured to be the same as a default
+      # value it will not show up in the running configuration and as a result
+      # will not be parsed out by the parse instance methods.  This method
+      # exposes the default values.
+      #
+      # @return [Array<Hash>] Single element Array of resource hashes
+      def radius_global_defaults
+        {
+          name: 'settings',
+          enable: true,
+          timeout: 5,
+          retransmit_count: 3
+        }
+      end
+      private :radius_global_defaults
+
+      ##
+      # parse_global_key takes a running configuration as a string and
+      # parses out the radius global key and global key format if it exists in
+      # the configuration.  An empty Hash is returned if there is no global key
+      # configured.  The intent of the Hash is to be merged into a property
+      # hash.
+      #
+      # @param [String] config The running configuration as a single string.
+      #
+      # @api private
+      #
+      # @return [Hash<Symbol,Object>] resource hash attributes
+      def parse_global_key(config)
+        rsrc_hsh = {}
+        (key_format, key) = config.scan(/radius-server key (\d+) (\w+)/).first
+        rsrc_hsh[:key_format] = key_format.to_i if key_format
+        rsrc_hsh[:key] = key if key
+        rsrc_hsh
+      end
+      private :parse_global_key
+
+      ##
+      # parse_global_timeout takes a running configuration as a string
+      # and parses out the radius global timeout if it exists in the
+      # configuration.  An empty Hash is returned if there is no global timeout
+      # value configured.  The intent of the Hash is to be merged into a
+      # property hash.
+      #
+      # @param [String] config The running configuration as a single string.
+      #
+      # @api private
+      #
+      # @return [Hash<Symbol,Object>] resource hash attributes
+      def parse_global_timeout(config)
+        rsrc_hsh = {}
+        timeout = config.scan(/radius-server timeout (\d+)/).first
+        # EOS default is 5 (does not show up in the running config)
+        rsrc_hsh[:timeout] = timeout.first.to_i if timeout
+        rsrc_hsh
+      end
+      private :parse_global_timeout
+
+      ##
+      # parse_global_retransmit takes a running configuration as a string and
+      # parses out the radius global retransmit count value if it exists in the
+      # configuration.  An empty Hash is returned if there is no global timeout
+      # value configured.  The intent of the Hash is to be merged into a
+      # property hash.
+      #
+      # @param [String] config The running configuration as a single string.
+      #
+      # @api private
+      #
+      # @return [Hash<Symbol,Object>] resource hash attributes
+      def parse_global_retransmit(config)
+        rsrc_hsh = {}
+        count = config.scan(/radius-server retransmit (\d+)/).first
+        # EOS default is 3 (does not show up in the running config)
+        rsrc_hsh[:retransmit_count] = count.first.to_i if count
+        rsrc_hsh
+      end
+      private :parse_global_retransmit
+
+      ##
+      # set_global_key configures the radius default key.  This method maps to
+      # the `radius-server key` EOS configuration command, e.g. `radius-server
+      # key 7 070E234F1F5B4A`.
+      #
+      # @option opts [String] :key ('070E234F1F5B4A') The key value
+      #
+      # @option opts [Fixnum] :key_format (7) The key format, 0 for plaintext
+      #   and 7 for a hashed value.  7 will be assumed if this option is not
+      #   provided.
+      #
+      # @api public
+      #
+      # @return [Boolean] true if no errors
+      def set_global_key(opts = {})
+        format = opts[:key_format] || 7
+        key = opts[:key]
+        fail ArgumentError, 'key option is required' unless key
+        result = api.config("radius-server key #{format} #{key}")
+        result == [{}]
+      end
+
+      ##
+      # set_timeout configures the radius default timeout.  This method maps to
+      # the `radius-server timeout` setting.
+      #
+      # @option opts [Fixnum] :timeout (50) The timeout in seconds to
+      #   configure.
+      #
+      # @api public
+      #
+      # @return [Boolean] true if no errors
+      def set_timeout(opts = {})
+        timeout = opts[:timeout]
+        fail ArgumentError, 'timeout option is required' unless timeout
+        result = api.config("radius-server timeout #{timeout}")
+        result == [{}]
+      end
+
+      ##
+      # set_retransmit_count configures the radius default retransmit count.
+      # This method maps to the `radius-server retransmit` configuration
+      # command.
+      #
+      # @option opts [Fixnum] :retransmit_count (4) The number of times to
+      #   retry an unresponsive server after the first timeout period.
+      #
+      # @api public
+      #
+      # @return [Boolean] true if no errors
+      def set_retransmit_count(opts = {})
+        retransmit_count = opts[:retransmit_count]
+        fail ArgumentError,
+          'retransmit_count option is required' unless retransmit_count
+        result = api.config("radius-server retransmit #{retransmit_count}")
+        result == [{}]
+      end
+    end
+  end
+end