Newer
Older
---
- name: "Copy configuration files to ldap client"
template: src={{ item }}.j2 dest=/etc/{{ item }}
with_items:
- nsswitch.conf
Chris Hines
committed
become: true
become_user: root
- name: "make basedir"
Chris Hines
committed
file: path="{{ ldapCaCertFile | dirname }}" state=directory owner=root follow=yes
become: true
become_user: root
when: ldapCaCertFile is defined
Chris Hines
committed
- name: "Copy the CA cert"
copy: src={{ ldapCaCertSrc }} dest={{ ldapCaCertFile }} owner=root mode=644
Chris Hines
committed
become: true
become_user: root
Chris Hines
committed
when: ldapCaCertSrc is defined
- name: "Template CA cert"
template: src=ldapCaCert.j2 dest={{ ldapCaCertFile }} owner=root mode=644
Chris Hines
committed
become: true
become_user: root
when: ldapCaCertContents is defined
Chris Hines
committed
template: src=system-auth.j2 dest=/etc/pam.d/system-auth-ac
Chris Hines
committed
become: true
become_user: root
Chris Hines
committed
template: src=password-auth.j2 dest=/etc/pam.d/password-auth-ac
Chris Hines
committed
become: true
become_user: root
- name: "Add LDAP server IP address to /etc/hosts"
lineinfile: dest=/etc/hosts line="{{ ldapServerHostIpLine }}" state=present insertafter=EOF
Chris Hines
committed
become: true
become_user: root
when: ldapServerHostIpLine is defined
- name: "Copy sssd.conf to ldap client"
template: src=sssd.j2 dest=/etc/sssd/sssd.conf owner=root group=root mode=600
Chris Hines
committed
become: true
become_user: root
- name: "Make the cache a tmpfs"
mount: name=/var/lib/sss/db/ src=tmpfs fstype=tmpfs opts='size=40m' state=mounted
become: true
become_user: root
- name: "start sssd"
service: name=sssd state=started enabled=yes
Chris Hines
committed
become: true
become_user: root