LILiK
/
lilik_playbook
5
0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
Playbooks to a new Lilik
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
321 Commits
12 Branches
967 KiB
Tree: da88337966
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'da88337966'
${ noResults }
lilik_playbook/ldap.yaml

43 lines
1.2 KiB
Raw Normal View History

Some playbooks full of joy.
9 years ago
connection/ssh_lxc: new style for containers Now which *host* is hosting a specific container is not defined in the playbook yaml file but centrally in the invetory under the `ansible_lxc_host` variable. The `lxc_guest` role is runned directly against the guest, even if it doesn't exist yet, and lxc tasks are delegated to the lxc-running physical host. In this way it should be easier to scale-up and configure multiple istance of a service on different containers without changing the playbook. Look at `/ldap.yaml` for a commented example.
5 years ago
Some playbooks full of joy.
9 years ago
add dns_record role
8 years ago
Some playbooks full of joy.
9 years ago
connection/ssh_lxc: new style for containers Now which *host* is hosting a specific container is not defined in the playbook yaml file but centrally in the invetory under the `ansible_lxc_host` variable. The `lxc_guest` role is runned directly against the guest, even if it doesn't exist yet, and lxc tasks are delegated to the lxc-running physical host. In this way it should be easier to scale-up and configure multiple istance of a service on different containers without changing the playbook. Look at `/ldap.yaml` for a commented example.
5 years ago
add monitoring role to playbooks
7 years ago
 
  1. ---

  2. # 1) Deploy the lxc container(s)

  3. - hosts: ldap

  4.   # The host may not exist yet: do not gather facts

  5.   gather_facts: false

  6.   tags:

  7.     - lxc

  8.   tasks:

  9.     # Delegate lxc container deployment to `ansible_lxc_host`

  10.     - import_role: name='lxc_guest'

  11.       vars:

  12.         vm_name: '{{ inventory_hostname }}'

  13.         vm_size: '1G'

  14.         vg_name: '{{ hostvars[ansible_lxc_host]["vg_name"] }}'

  15.       delegate_to: '{{ ansible_lxc_host }}'

  16.     # The host may not be directly reachable: use `ssh_lxc` proxy to

  17.     # gather facts (setup) and configure SSH.

  18.     - set_fact: ansible_connection='ssh_lxc'

  19.     - setup:

  20.     - include_role: name='ssh_server'

  21.     # Now the host should be ssh-reachable

  22.     - set_fact: ansible_connection='ssh'

  23. 

  24. # 2) Deploy LDAP server(s)

  25. - hosts: ldap

  26.   roles:

  27.       - role: dns_record

  28.       - role: ldap

  29.         ldap_domain: 'lilik.it'

  30.         ldap_organization: 'LILiK'

  31.         fqdn_domain: 'dmz.{{ domain }}'

  32.         x509_suffix: 'o=LILiK,l=Firenze,st=IT'

  33.         virtual_domains:

  34.           - '{{ domain }}'

  35.         # Default values:

  36.         #ldap_tls_enabled: true

  37.         #renew_rootdn_pw: true

  38.         #check_tree: true

  39. 

  40. # 3) Enable monitoring

  41. - hosts: status

  42.   roles:

  43.     - role: icinga2-monitoring