Infrastructure/ansible
1
0
Fork 0
Code Issues Pull requests 6 Projects Releases Packages Wiki Activity Actions

[ipa/server] Remove RHEL 8 entries

Browse source 
We only now run IPA on RHEL 9, so let's clean the playbook a little bit.

Signed-off-by: Michal Konecny <mkonecny@redhat.com>
This commit is contained in:
Michal Konecny 2024-07-08 12:29:36 +02:00 committed by zlopez
parent bd1f4f82e8
commit b8ea561123
1 changed files with 0 additions and 81 deletions
Download patch file Download diff file Expand all files Collapse all files

81
roles/ipa/server/tasks/main.yml
View file

@ -14,20 +14,6 @@
- ipa/server - ipa/server
- config - config
# TODO: consider switching to https://github.com/freeipa/ansible-freeipa
- name: install needed packages
package: name={{ item }} state=present
with_items:
- haveged
- ipa-server
- ipa-server-dns
- ipa-fas
- pynag # needed for nagios checks
tags:
- ipa/server
- packages
when: ansible_distribution_major_version|int <= 8 and ansible_distribution == 'RedHat'
- name: install needed packages - name: install needed packages
package: name={{ item }} state=present package: name={{ item }} state=present
with_items: with_items:
@ -54,27 +40,6 @@
- ipa/server - ipa/server
- config - config
- name: install IPA
command: ipa-server-install
--realm={{ipa_realm}}
--domain={{ipa_realm}}
--ds-password={{ipa_dm_password}}
--admin-password={{ipa_admin_password}}
--mkhomedir
--no-ntp
--unattended
--no-ssh
--no-sshd
--setup-dns
--forwarder=10.3.163.33
--forwarder=10.3.163.34
--log-file=/var/log/ipainstall.log
creates=/etc/ipa/default.conf
tags:
- ipa/server
- config
when: ipa_initial and ansible_distribution_major_version|int <= 8 and ansible_distribution == 'RedHat'
- name: install IPA - name: install IPA
command: ipa-server-install command: ipa-server-install
--realm={{ipa_realm}} --realm={{ipa_realm}}
@ -144,52 +109,6 @@
- name: configure replication - name: configure replication
block: block:
- name: create replica file
delegate_to: "{{ipa_server}}"
command: ipa-replica-prepare
--password={{ipa_dm_password}}
{{inventory_hostname}}
creates=/var/lib/ipa/replica-info-{{inventory_hostname}}.gpg
when: ansible_distribution_major_version|int < 8
- name: retrieve replica file
delegate_to: "{{ipa_server}}"
fetch: src=/var/lib/ipa/replica-info-{{inventory_hostname}}.gpg
dest=/tmp/ipa_replica_{{inventory_hostname}}.gpg
flat=yes
when: ansible_distribution_major_version|int < 8
- name: deploy replica file
copy: src=/tmp/ipa_replica_{{inventory_hostname}}.gpg
dest=/root/ipa_replica_{{inventory_hostname}}.gpg
mode=0600 owner=root group=root
when: ansible_distribution_major_version|int < 8
- name: destroy replica file on ansible host
delegate_to: localhost
file: path=/tmp/ipa_replica_{{inventory_hostname}}.gpg state=absent
when: ansible_distribution_major_version|int < 8
- name: deploy replica
command: ipa-replica-install
--setup-ca
--setup-kra
--password={{ipa_dm_password}}
--admin-password={{ipa_admin_password}}
--mkhomedir
--no-ntp
--unattended
--no-ssh
--no-sshd
--setup-dns
--forwarder=10.3.163.33
--forwarder=10.3.163.34
--skip-conncheck
--log-file=/var/log/ipainstall.log
--dirsrv-config-file=/root/ldif/replica-install.ldif
/root/ipa_replica_{{inventory_hostname}}.gpg
when: ansible_distribution_major_version|int < 8
# The ipa-client-install makes the ipa-replica-install fail # The ipa-client-install makes the ipa-replica-install fail
# on RHEL 9 with: "Your system is partly configured." # on RHEL 9 with: "Your system is partly configured."
# This will clean the previous installation and allows # This will clean the previous installation and allows