Add a crypto-policies to set to LEGACY on fedora 33 hosts
This is needed to get our 2fa working. We should drop this once we are moved to sssd. Signed-off-by: Kevin Fenzi <kevin@scrye.com>
This commit is contained in:
Kevin Fenzi
parent
c366454e46
commit
4e63bbb7b2
3 changed files with 14 additions and 0 deletions
10
roles/base/tasks/crypto-policies.yml
Normal file
10
roles/base/tasks/crypto-policies.yml
Normal file
|
|
@ -0,0 +1,10 @@
|
|||
- name: Set crypto-policy on fedora 33 and higher hosts to allow 2fa to work
|
||||
template:
|
||||
dest: /etc/crypto-policies/config
|
||||
src: crypto-policies-config
|
||||
owner: root
|
||||
mode: 644
|
||||
when: ansible_distribution_major_version|int >= 33
|
||||
tags:
|
||||
- crypto-policies
|
||||
- base/crypto-policies
|
||||
|
|
@ -581,3 +581,6 @@
|
|||
- base
|
||||
- config
|
||||
- python3alternative
|
||||
|
||||
- name: Set crypto-policy to LEGACY on fedora 33 hosts to get 2fa working
|
||||
import_tasks: crypto-policies.yml
|
||||
|
|
|
|||
1
roles/base/templates/crypto-policies-config
Normal file
1
roles/base/templates/crypto-policies-config
Normal file
|
|
@ -0,0 +1 @@
|
|||
LEGACY
|
||||
Loading…
Add table
Add a link
Reference in a new issue