From 6c5b779488d32759939a78e5b8359d29d66cb90e Mon Sep 17 00:00:00 2001
From: Nils Philippsen <nils@redhat.com>
Date: Fri, 19 Mar 2021 17:25:38 +0100
Subject: [PATCH] ipa/client: enable for smtp_mm in prod

Signed-off-by: Nils Philippsen <nils@redhat.com>
---
 inventory/group_vars/smtp_mm | 13 ++++++++++++-
 playbooks/groups/smtp-mm.yml |  4 +---
 2 files changed, 13 insertions(+), 4 deletions(-)

diff --git a/inventory/group_vars/smtp_mm b/inventory/group_vars/smtp_mm
index 09b8a1eee1..83b39c886b 100644
--- a/inventory/group_vars/smtp_mm
+++ b/inventory/group_vars/smtp_mm
@@ -9,7 +9,18 @@ num_cpus: 2
 
 tcp_ports: [ 25 ]
 
-fas_client_groups: sysadmin-noc,sysadmin-tools,fi-apprentice,sysadmin-veteran
+primary_auth_source: ipa
+ipa_host_group: smtp_mm
+ipa_host_group_desc: SMTP servers
+ipa_client_shell_access:
+- fi-apprentice
+- sysadmin-noc
+- sysadmin-tools
+- sysadmin-veteran
+ipa_client_sudo_access:
+- sysadmin-noc
+- sysadmin-tools
+- sysadmin-veteran
 
 postfix_transport_filename: transports.smtp-mm
 postfix_group: smtp-mm
diff --git a/playbooks/groups/smtp-mm.yml b/playbooks/groups/smtp-mm.yml
index 88b1d236b9..013814695f 100644
--- a/playbooks/groups/smtp-mm.yml
+++ b/playbooks/groups/smtp-mm.yml
@@ -17,8 +17,7 @@
   - rkhunter
   - nagios_client
   - hosts
-  - { role: ipa/client, when: env == "staging" }
-  - { role: fas_client, when: env != "staging" }
+  - ipa/client
   - collectd/base
   - sudo
   - { role: openvpn/client,
@@ -28,7 +27,6 @@
   - import_tasks: "{{ tasks_path }}/yumrepos.yml"
 
   tasks:
-  - import_tasks: "{{ tasks_path }}/2fa_client.yml"
   - import_tasks: "{{ tasks_path }}/motd.yml"
 
   handlers: