Feat(eos_cli_config_gen): Add support for additional dot1x commands.

ansible_collections/arista/avd/molecule/eos_cli_config_gen/documentation/devices/ethernet-interfaces.md

@@ -1141,6 +1141,29 @@ interface Ethernet69
    description IP NAT service-profile
    switchport
    ip nat service-profile TEST-NAT-PROFILE
+!
+interface Ethernet70
+   description dot1x_aaa_unresponsive
+   no shutdown
+   dot1x aaa unresponsive phone action apply cached-results timeout 10 hours else traffic allow
+   dot1x aaa unresponsive action traffic allow vlan 10 access-list acl1
+   dot1x aaa unresponsive eap response success
+   dot1x mac based access-list
+!
+interface Ethernet71
+   description dot1x_aaa_unresponsive1
+   no shutdown
+   dot1x aaa unresponsive phone action apply cached-results timeout 10 hours
+   dot1x aaa unresponsive action traffic allow vlan 10 access-list acl1
+   dot1x aaa unresponsive eap response success
+   dot1x mac based access-list
+!
+interface Ethernet72
+   description dot1x_aaa_unresponsive2
+   no shutdown
+   dot1x aaa unresponsive action traffic allow vlan 10 access-list acl1
+   dot1x aaa unresponsive eap response success
+   dot1x mac based access-list
 ```
 
 ## BFD
@@ -1195,6 +1218,9 @@ interface Ethernet69
 | Ethernet43 | - | - | - | - | - | - | - | - |
 | Ethernet44 | - | - | - | - | - | - | - | - |
 | Ethernet45 | authenticator | auto | - | True | allow vlan 800 | multi-host | True | True |
+| Ethernet70 | - | - | - | - | - | - | - | - |
+| Ethernet71 | - | - | - | - | - | - | - | - |
+| Ethernet72 | - | - | - | - | - | - | - | - |
 
 ## Power Over Ethernet (PoE)
 

ansible_collections/arista/avd/molecule/eos_cli_config_gen/intended/configs/dot1x-2.cfg

@@ -9,5 +9,7 @@ dot1x protocol lldp bypass
 dot1x protocol bpdu bypass
 dot1x dynamic-authorization
 dot1x
+   aaa unresponsive phone action apply cached-results
+   aaa unresponsive action traffic allow
    radius av-pair service-type
    radius av-pair framed-mtu 1500

ansible_collections/arista/avd/molecule/eos_cli_config_gen/intended/configs/dot1x.cfg

@@ -29,6 +29,7 @@ dot1x
    mac based authentication hold period 300 seconds
    radius av-pair service-type
    radius av-pair framed-mtu 1500
+   mac-based-auth radius av-pair user-name delimiter colon lowercase
    supplicant disconnect cached-results timeout 79 seconds
    captive-portal url http://portal-nacm08/captiveredirect/ ssl profile Profile1
    captive-portal access-list ipv4 ACL

ansible_collections/arista/avd/molecule/eos_cli_config_gen/intended/configs/ethernet-interfaces.cfg

@@ -758,6 +758,29 @@ interface Ethernet69
    switchport
    ip nat service-profile TEST-NAT-PROFILE
 !
+interface Ethernet70
+   description dot1x_aaa_unresponsive
+   no shutdown
+   dot1x aaa unresponsive phone action apply cached-results timeout 10 hours else traffic allow
+   dot1x aaa unresponsive action traffic allow vlan 10 access-list acl1
+   dot1x aaa unresponsive eap response success
+   dot1x mac based access-list
+!
+interface Ethernet71
+   description dot1x_aaa_unresponsive1
+   no shutdown
+   dot1x aaa unresponsive phone action apply cached-results timeout 10 hours
+   dot1x aaa unresponsive action traffic allow vlan 10 access-list acl1
+   dot1x aaa unresponsive eap response success
+   dot1x mac based access-list
+!
+interface Ethernet72
+   description dot1x_aaa_unresponsive2
+   no shutdown
+   dot1x aaa unresponsive action traffic allow vlan 10 access-list acl1
+   dot1x aaa unresponsive eap response success
+   dot1x mac based access-list
+!
 interface Management1
    description oob_management
    vrf MGMT

ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/dot1x-2.yml

@@ -10,3 +10,9 @@ dot1x:
   radius_av_pair:
     service_type: true
     framed_mtu: 1500
+  aaa:
+    unresponsive:
+      action:
+        traffic_allow: true
+      phone_action:
+        apply_cached_results: true

ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/dot1x.yml

@@ -24,6 +24,9 @@ dot1x:
         apply_alternate: true
       recovery_action_reauthenticate: true
     accounting_update_interval: 6
+  radius_av_pair_username_format:
+    delimiter: colon
+    mac_string_case: lowercase
   captive_portal:
     enabled: true
     url: http://portal-nacm08/captiveredirect/

ansible_collections/arista/avd/molecule/eos_cli_config_gen/inventory/host_vars/ethernet-interfaces.yml

@@ -1354,3 +1354,48 @@ ethernet_interfaces:
         inner_vlan: 11
       network:
         protocol: client inner
+  - name: Ethernet70
+    description: dot1x_aaa_unresponsive
+    shutdown: false
+    dot1x:
+      aaa:
+        unresponsive:
+          eap_response: success
+          action:
+            traffic_allow_vlan: 10
+            traffic_allow_access_list: acl1
+          phone_action:
+            apply_cached_results: true
+            cached_results_timeout:
+              time_duration: 10
+              time_duration_unit: hours
+            traffic_allow: true
+            apply_alternate: true
+      mac_based_access_list: true
+  - name: Ethernet71
+    description: dot1x_aaa_unresponsive1
+    shutdown: false
+    dot1x:
+      aaa:
+        unresponsive:
+          eap_response: success
+          action:
+            traffic_allow_vlan: 10
+            traffic_allow_access_list: acl1
+          phone_action:
+            apply_cached_results: true
+            cached_results_timeout:
+              time_duration: 10
+              time_duration_unit: hours
+      mac_based_access_list: true
+  - name: Ethernet72
+    description: dot1x_aaa_unresponsive2
+    shutdown: false
+    dot1x:
+      aaa:
+        unresponsive:
+          eap_response: success
+          action:
+            traffic_allow_vlan: 10
+            traffic_allow_access_list: acl1
+      mac_based_access_list: true

python-avd/pyavd/_eos_cli_config_gen/j2templates/eos/dot1x.j2

@@ -20,7 +20,7 @@ dot1x dynamic-authorization
 {%     endif %}
 {%     if dot1x.mac_based_authentication is arista.avd.defined or dot1x.radius_av_pair is arista.avd.defined or
          dot1x.aaa.unresponsive is arista.avd.defined or dot1x.captive_portal is arista.avd.defined
-         or dot1x.supplicant is arista.avd.defined %}
+         or dot1x.supplicant is arista.avd.defined  or dot1x.radius_av_pair_username_format is arista.avd.defined %}
 dot1x
 {%         for profile in dot1x.supplicant.profiles | arista.avd.natural_sort("name") %}
    supplicant profile {{ profile.name }}
@@ -99,6 +99,9 @@ dot1x
    radius av-pair framed-mtu {{ dot1x.radius_av_pair.framed_mtu }}
 {%             endif %}
 {%         endif %}
+{%         if dot1x.radius_av_pair_username_format.delimiter is arista.avd.defined and dot1x.radius_av_pair_username_format.mac_string_case is arista.avd.defined %}
+   mac-based-auth radius av-pair user-name delimiter {{ dot1x.radius_av_pair_username_format.delimiter }} {{ dot1x.radius_av_pair_username_format.mac_string_case }}
+{%         endif %}
 {%         if dot1x.supplicant.disconnect_cached_results_timeout is arista.avd.defined %}
    supplicant disconnect cached-results timeout {{ dot1x.supplicant.disconnect_cached_results_timeout }} seconds
 {%         endif %}