From 097a77e73c5a496761f3e69b6a5d22146f52db03 Mon Sep 17 00:00:00 2001
From: Nils Philippsen <nils@redhat.com>
Date: Fri, 19 Mar 2021 17:25:38 +0100
Subject: [PATCH] ipa/client: enable for dns in prod

Signed-off-by: Nils Philippsen <nils@redhat.com>
---
 inventory/group_vars/dns | 3 +--
 playbooks/groups/dns.yml | 4 +---
 2 files changed, 2 insertions(+), 5 deletions(-)

diff --git a/inventory/group_vars/dns b/inventory/group_vars/dns
index fb0db2a8a6..5ec76f64f1 100644
--- a/inventory/group_vars/dns
+++ b/inventory/group_vars/dns
@@ -10,8 +10,7 @@ num_cpus: 2
 udp_ports: [ 53 ]
 tcp_ports: [ 53 ]
 
-fas_client_groups: sysadmin-main,sysadmin-dns
-
+primary_auth_source: ipa
 ipa_host_group: dns
 ipa_host_group_desc: DNS servers
 ipa_client_shell_groups:
diff --git a/playbooks/groups/dns.yml b/playbooks/groups/dns.yml
index 3b30474487..d138468ab1 100644
--- a/playbooks/groups/dns.yml
+++ b/playbooks/groups/dns.yml
@@ -17,8 +17,7 @@
   - hosts
   - rkhunter
   - nagios_client
-  - { role: ipa/client, when: env == "staging" }
-  - { role: fas_client, when: env != "staging" }
+  - ipa/client
   - collectd/base
   - collectd/bind
   - rsyncd
@@ -31,7 +30,6 @@
   - import_tasks: "{{ tasks_path }}/yumrepos.yml"
 
   tasks:
-  - import_tasks: "{{ tasks_path }}/2fa_client.yml"
   - import_tasks: "{{ tasks_path }}/motd.yml"
 
   handlers: