diff --git a/inventory/group_vars/all b/inventory/group_vars/all index fa980c5430..866d91c027 100644 --- a/inventory/group_vars/all +++ b/inventory/group_vars/all @@ -135,11 +135,11 @@ freezes: true install_noc: none ipa_admin_password: "{{ ipa_prod_admin_password }}" ipa_realm: FEDORAPROJECT.ORG -ipa_server: ipa01.iad2.fedoraproject.org +ipa_server: ipa03.iad2.fedoraproject.org ipa_server_nodes: - ipa01.iad2.fedoraproject.org - ipa02.iad2.fedoraproject.org - #- ipa03.iad2.fedoraproject.org + - ipa03.iad2.fedoraproject.org ks_repo: http://infrastructure.fedoraproject.org/repo/rhel/RHEL7-x86_64/ # defaults for virt installs ks_url: http://infrastructure.fedoraproject.org/repo/rhel/ks/kvm-rhel-7 diff --git a/inventory/host_vars/ipa03.iad2.fedoraproject.org b/inventory/host_vars/ipa03.iad2.fedoraproject.org index b32cc7e4d4..955c1bd01a 100644 --- a/inventory/host_vars/ipa03.iad2.fedoraproject.org +++ b/inventory/host_vars/ipa03.iad2.fedoraproject.org @@ -6,3 +6,4 @@ ks_repo: http://10.3.163.35/repo/rhel/RHEL9-x86_64/ ks_url: http://10.3.163.35/repo/rhel/ks/kvm-rhel vmhost: vmhost-x86-06.iad2.fedoraproject.org volgroup: /dev/vg_guests +ipa_initial: true diff --git a/roles/ipa/server/tasks/main.yml b/roles/ipa/server/tasks/main.yml index a43cf04732..93744bc33a 100644 --- a/roles/ipa/server/tasks/main.yml +++ b/roles/ipa/server/tasks/main.yml @@ -73,7 +73,25 @@ tags: - ipa/server - config - when: ipa_initial + when: ipa_initial and ansible_distribution_major_version|int <= 8 and ansible_distribution == 'RedHat' + +- name: install IPA + command: ipa-server-install + --realm={{ipa_realm}} + --domain={{ipa_realm}} + --ds-password={{ipa_dm_password}} + --admin-password={{ipa_admin_password}} + --mkhomedir + --no-ntp + --unattended + --no-ssh + --no-sshd + --log-file=/var/log/ipainstall.log + creates=/etc/ipa/default.conf + tags: + - ipa/server + - config + when: ipa_initial and ansible_distribution_major_version|int > 8 and ansible_distribution == 'RedHat' - name: install IPA vault command: ipa-kra-install