Add a role for ipa clients and use it in Ipsilon

Signed-off-by: Aurélien Bompard <aurelien@bompard.org>
2020-10-07 10:05:19 +02:00 · 2020-10-07 10:05:19 +02:00 · ba82363e78
commit ba82363e78
parent 3ae9b4bd65
2 changed files with 11 additions and 0 deletions
--- a/roles/ipa/client/tasks/main.yml
+++ b/roles/ipa/client/tasks/main.yml
@ -0,0 +1,10 @@
+- name: Enroll system as IPA client
+  command:
+    cmd: ipa-client-install
+         --hostname={{ ansible_fqdn }}
+         --domain={{ ipa_realm | lower }}
+         --realm={{ ipa_realm }}
+         --server={{ ipa_server }}
+         -p admin -w {{ ipa_admin_password }}
+         -U -N --force-join
+    creates: /etc/ipa/default.conf
--- a/roles/ipsilon/tasks/main.yml
+++ b/roles/ipsilon/tasks/main.yml
@ -121,6 +121,7 @@
  tags:
  - ipsilon

+- include_role: ipa/client

 - name: Get admin ticket
  shell: echo "{{ipa_admin_password}}" | kinit admin