LILiK
/
lilik_playbook
5
0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
Playbooks to a new Lilik
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
210 Commits
12 Branches
967 KiB
Tree: 95f93d6a5d
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '95f93d6a5d'
${ noResults }
lilik_playbook/roles/ldap/tasks/main.yaml

89 lines
2.2 KiB
Raw Normal View History

move service task and handler to a separate role (see ansible issue 23389, 20603, 15902)
8 years ago
add nscd package to ldap task
8 years ago
move service task and handler to a separate role (see ansible issue 23389, 20603, 15902)
8 years ago
Some playbooks full of joy.
9 years ago
fix destroy container and ldap role
9 years ago
Some playbooks full of joy.
9 years ago
update ldap playbook
9 years ago
fix destroy container and ldap role
9 years ago
update ldap playbook
9 years ago
fix destroy container and ldap role
9 years ago
update ldap playbook
9 years ago
move service task and handler to a separate role (see ansible issue 23389, 20603, 15902) Resolves #13
8 years ago
huge refactoring on services
9 years ago
update ldap playbook
9 years ago
fix service handler name in ldap role
8 years ago
add memberof to ldap
8 years ago
LDAP playbook updates, default tree.
9 years ago
fix service handler name in ldap role
8 years ago
update ldap playbook
9 years ago
 
  1. - include_role:

  2.     name: service

  3.   vars:

  4.     service_name: nscd

  5.     service_packages: nscd

  6. 

  7. - name: configure OpenLDAP (domain)

  8.   debconf:

  9.       name: 'slapd'

  10.       question: 'slapd/domain'

  11.       vtype: 'string'

  12.       value: '{{ ldap_domain }}'

  13. - name: configure OpenLDAP (configure)

  14.   debconf:

  15.       name: 'slapd'

  16.       question: 'slapd/dump_database'

  17.       vtype: 'string'

  18.       value: 'when needed'

  19. - name: configure OpenLDAP (organization)

  20.   debconf:

  21.       name: 'slapd'

  22.       question: 'shared/organization'

  23.       vtype: 'string'

  24.       value: '{{ ldap_organization }}'

  25. - name: generate admin password

  26.   gen_passwd: length=20

  27.   register: new_passwd

  28. - name: configure OpenLDAP (password1)

  29.   debconf:

  30.       name: 'slapd'

  31.       question: 'slapd/password1'

  32.       vtype: 'string'

  33.       value: '{{ new_passwd.passwd }}'

  34. - name: configure OpenLDAP (password2)

  35.   debconf:

  36.       name: 'slapd'

  37.       question: 'slapd/password2'

  38.       vtype: 'string'

  39.       value: '{{ new_passwd.passwd }}'

  40. - name: configure phamm-ldap

  41.   debconf:

  42.       name: 'phamm-ldap'

  43.       question: 'phamm-ldap/init_base_ldap'

  44.       vtype: 'boolean'

  45.       value: false

  46. - include_role:

  47.     name: service

  48.   vars:

  49.     service_name: slapd

  50.     service_packages:

  51.         - slapd

  52.         - ldap-utils

  53.         - phamm-ldap

  54.         - sudo

  55. - name: upload slapd config

  56.   template:

  57.       src: slapd.conf.j2

  58.       dest: "/etc/ldap/slapd.conf"

  59. - name: update slapd config

  60.   shell: slaptest -f /etc/ldap/slapd.conf -F /etc/ldap/slapd.d

  61.   args:

  62.       creates: "/etc/ldap/slapd.d/cn=config/cn=schema/cn={4}phamm.ldif"

  63.   become: true

  64.   become_method: sudo

  65.   become_user: openldap

  66.   notify: restart slapd

  67. 

  68. - name: fix missing memberOf module load

  69.   lineinfile:

  70.     dest: /etc/ldap/slapd.d/cn=config/cn=module{0}.ldif

  71.     line: "olcModuleLoad: {1}memberof"

  72.   notify: restart slapd

  73. - name: upload default tree

  74.   template:

  75.     dest=/etc/ldap/default_tree.ldif

  76.     src=default_tree.ldif.j2

  77.     owner=root

  78.     group=root

  79.     mode=0400

  80.   register: upload_default_tree

  81. - name: create default tree

  82.   shell: slapadd -l /etc/ldap/default_tree.ldif

  83.   when: upload_default_tree.changed

  84.   notify: restart slapd

  85. - name: enable OpenLDAP server

  86.   service:

  87.       name: 'slapd'

  88.       enabled: true

  89.       state: started