From a706cd84592254a4f4a3e1fd60b04d51842843cd Mon Sep 17 00:00:00 2001
From: Nils Philippsen <nils@redhat.com>
Date: Fri, 19 Mar 2021 17:25:38 +0100
Subject: [PATCH] ipa/client: enable for vmhost_copr in prod

Signed-off-by: Nils Philippsen <nils@redhat.com>
---
 inventory/group_vars/vmhost_copr | 10 ++++++++--
 playbooks/groups/vmhost_copr.yml |  5 +----
 2 files changed, 9 insertions(+), 6 deletions(-)

diff --git a/inventory/group_vars/vmhost_copr b/inventory/group_vars/vmhost_copr
index bf10e9a709..13742732f5 100644
--- a/inventory/group_vars/vmhost_copr
+++ b/inventory/group_vars/vmhost_copr
@@ -1,8 +1,14 @@
 ---
 virthost: true
 
-fas_client_groups: sysadmin-copr,sysadmin-main
-sudoers: "{{ private }}/files/sudo/copr-sudoers"
+primary_auth_source: ipa
+ipa_host_group: vmhost-copr
+ipa_host_group_desc: VM hosts for COPR
+ipa_client_shell_groups:
+- sysadmin-copr
+ipa_client_sudo_groups:
+- sysadmin-copr
+
 
 nrpe_procs_warn: 1400
 nrpe_procs_crit: 1500
diff --git a/playbooks/groups/vmhost_copr.yml b/playbooks/groups/vmhost_copr.yml
index 29ff1beb27..29c9d08735 100644
--- a/playbooks/groups/vmhost_copr.yml
+++ b/playbooks/groups/vmhost_copr.yml
@@ -24,16 +24,13 @@
   - rkhunter
   - nagios_client
   - hosts
-  - { role: ipa/client, when: env == "staging" }
-  - { role: fas_client, when: env != "staging" }
+  - ipa/client
   - collectd/base
   - sudo
   - { role: openvpn/client, when: vpn|bool }
   - virthost
 
   tasks:
-  - import_tasks: "{{ tasks_path }}/2fa_client.yml"
-    when: env != 'staging'
   - import_tasks: "{{ tasks_path }}/motd.yml"
 
   handlers: