You need to sign in or sign up before continuing.
Newer
Older
---
- name: "Copy configuration files to ldap client"
template: src={{ item }}.j2 dest=/etc/{{ item }}
with_items:
- pam_ldap.conf
- nsswitch.conf
sudo: true
- name: "make basedir"
file: path="{{ ldapCaCertFile | dirname }}" state=directory owner=root
sudo: true
Chris Hines
committed
- name: "Copy the CA cert"
copy: src={{ ldapCaCertSrc }} dest={{ ldapCaCertFile }} owner=root mode=644
sudo: true
when: ldapCaCertSrc is defined
- name: "Template CA cert"
template: src=ldapCaCert.j2 dest={{ ldapCaCertFile }} owner=root mode=644
sudo: true
when: ldapCaCertContents is defined
- name: "Copy system auth"
template: src=system-auth.j2 dest=/etc/pam.d/system-auth
sudo: true
template: src=password-auth.j2 dest=/etc/pam.d/password-auth
- name: "Add LDAP server IP address to /etc/hosts"
lineinfile: dest=/etc/hosts line="{{ ldapServerHostIpLine }}" state=present insertafter=EOF
sudo: true
when: ldapServerHostIpLine is defined
- name: "Copy sssd.conf to ldap client"
template: src=sssd.j2 dest=/etc/sssd/sssd.conf owner=root group=root mode=600
sudo: true
- name: "Make the cache a tmpfs"
mount: name=/var/lib/sss/db/ src=tmpfs fstype=tmpfs opts='size=40m' state=mounted
become: true
become_user: root
- name: "start sssd"
service: name=sssd state=started enabled=yes
sudo: true