[ipa/server] Use the correct parameters for ipa_user

Signed-off-by: Michal Konecny <mkonecny@redhat.com>
2024-11-06 18:09:14 +01:00 · 2024-11-06 18:09:14 +01:00 · c19563b3db
commit c19563b3db
parent 5bca4dcea3
1 changed files with 3 additions and 5 deletions
--- a/roles/ipa/server/tasks/main.yml
+++ b/roles/ipa/server/tasks/main.yml
@ -323,8 +323,7 @@
    name: fas_sync
    givenname: FAS
    sn: Sync
-    userclass: system
-    ipaadmin_password: "{{ ipa_admin_password }}"
+    ipa_pass: "{{ ipa_admin_password }}"
  tags:
  - ipa/server
  - config
@ -447,10 +446,9 @@
    # Password expiration date will be a Friday 13th in 30 years. I'm sure we'll remember that.
    # (if unset, IPA will assume the password is expired because it hasn't been set by the user
    # themselves)
-    passwordexpiration: "2050-05-13 00:00:00"
+    krbpasswordexpiration: "2050-05-13 00:00:00"
    update_password: on_create
-    userclass: system
-    ipaadmin_password: "{{ ipa_admin_password }}"
+    ipa_pass: "{{ ipa_admin_password }}"
  tags:
  - ipa/server
  - config