ipa/client: enable for batcave in prod
Signed-off-by: Nils Philippsen <nils@redhat.com>
This commit is contained in:
Nils Philippsen
parent
d93246f23c
commit
c9b757d866
2 changed files with 2 additions and 5 deletions
|
|
@ -8,8 +8,7 @@ tcp_ports: [ 80, 443, 8442, 8443 ]
|
|||
# Neeed for rsync from log01 for logs.
|
||||
custom_rules: [ '-A INPUT -p tcp -m tcp -s 10.3.163.39 --dport 873 -j ACCEPT', '-A INPUT -p tcp -m tcp -s 192.168.1.59 --dport 873 -j ACCEPT' ]
|
||||
|
||||
fas_client_groups: sysadmin-ask,sysadmin-atomic,sysadmin-cvs,sysadmin-main,sysadmin-web,sysadmin-noc,sysadmin-hosted,sysadmin-releng,sysadmin-qa,sysadmin-tools,sysadmin-cloud,sysadmin-bot,sysadmin-centos,sysadmin-koschei,sysadmin-datanommer,sysadmin-fedimg,fi-apprentice,sysadmin-badges,sysadmin-mbs,sysadmin-veteran,sysadmin-coreos,sysadmin-upstreamfirst,sysadmin-releasemonitoring,sysadmin-fpdc,sysadmin-messaging,sysadmin-libravatar,sysadmin-gnome,sysadmin-copr,sysadmin-osbs,sysadmin-odcs,sysadmin-debuginfod
|
||||
|
||||
primary_auth_source: ipa
|
||||
ipa_host_group: batcave
|
||||
ipa_host_group_desc: The Bat Cave
|
||||
ipa_client_shell_groups:
|
||||
|
|
|
|||
|
|
@ -15,8 +15,7 @@
|
|||
- rkhunter
|
||||
- nagios_client
|
||||
- hosts
|
||||
- { role: ipa/client, when: env == "staging" }
|
||||
- { role: fas_client, when: env != "staging" }
|
||||
- ipa/client
|
||||
- ansible-server
|
||||
- sudo
|
||||
- collectd/base
|
||||
|
|
@ -66,7 +65,6 @@
|
|||
- import_tasks: "{{ tasks_path }}/yumrepos.yml"
|
||||
|
||||
tasks:
|
||||
- import_tasks: "{{ tasks_path }}/2fa_client.yml"
|
||||
- import_tasks: "{{ tasks_path }}/motd.yml"
|
||||
|
||||
handlers:
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue