Add a crypto-policies to set to LEGACY on fedora 33 hosts
This is needed to get our 2fa working. We should drop this once we are moved to sssd. Signed-off-by: Kevin Fenzi <kevin@scrye.com>
This commit is contained in:
Kevin Fenzi
parent
c366454e46
commit
4e63bbb7b2
3 changed files with 14 additions and 0 deletions
10
roles/base/tasks/crypto-policies.yml
Normal file
10
roles/base/tasks/crypto-policies.yml
Normal file
|
|
@ -0,0 +1,10 @@
|
||||||
|
- name: Set crypto-policy on fedora 33 and higher hosts to allow 2fa to work
|
||||||
|
template:
|
||||||
|
dest: /etc/crypto-policies/config
|
||||||
|
src: crypto-policies-config
|
||||||
|
owner: root
|
||||||
|
mode: 644
|
||||||
|
when: ansible_distribution_major_version|int >= 33
|
||||||
|
tags:
|
||||||
|
- crypto-policies
|
||||||
|
- base/crypto-policies
|
||||||
|
|
@ -581,3 +581,6 @@
|
||||||
- base
|
- base
|
||||||
- config
|
- config
|
||||||
- python3alternative
|
- python3alternative
|
||||||
|
|
||||||
|
- name: Set crypto-policy to LEGACY on fedora 33 hosts to get 2fa working
|
||||||
|
import_tasks: crypto-policies.yml
|
||||||
|
|
|
||||||
1
roles/base/templates/crypto-policies-config
Normal file
1
roles/base/templates/crypto-policies-config
Normal file
|
|
@ -0,0 +1 @@
|
||||||
|
LEGACY
|
||||||
Loading…
Add table
Add a link
Reference in a new issue