ipa/client: enable for fedocal in prod

Signed-off-by: Nils Philippsen <nils@redhat.com>
This commit is contained in:
Nils Philippsen 2021-03-19 17:25:38 +01:00
parent 55755bfe9b
commit cf73a8360a
2 changed files with 2 additions and 5 deletions
inventory/group_vars
playbooks/groups

View file

@ -15,8 +15,7 @@ tcp_ports: [ 80, 443,
# Neeed for rsync from log01 for logs. # Neeed for rsync from log01 for logs.
custom_rules: [ '-A INPUT -p tcp -m tcp -s 10.3.163.39 --dport 873 -j ACCEPT', '-A INPUT -p tcp -m tcp -s 192.168.1.59 --dport 873 -j ACCEPT' ] custom_rules: [ '-A INPUT -p tcp -m tcp -s 10.3.163.39 --dport 873 -j ACCEPT', '-A INPUT -p tcp -m tcp -s 192.168.1.59 --dport 873 -j ACCEPT' ]
fas_client_groups: sysadmin-noc,sysadmin-web,sysadmin-veteran primary_auth_source: ipa
ipa_host_group: fedocal ipa_host_group: fedocal
ipa_host_group_desc: Fedora calendaring service ipa_host_group_desc: Fedora calendaring service
ipa_client_shell_groups: ipa_client_shell_groups:

View file

@ -15,8 +15,7 @@
- rkhunter - rkhunter
- nagios_client - nagios_client
- hosts - hosts
- { role: ipa/client, when: env == "staging" } - ipa/client
- { role: fas_client, when: env != "staging" }
- rsyncd - rsyncd
- sudo - sudo
- { role: openvpn/client, - { role: openvpn/client,
@ -28,7 +27,6 @@
- import_tasks: "{{ tasks_path }}/yumrepos.yml" - import_tasks: "{{ tasks_path }}/yumrepos.yml"
tasks: tasks:
- import_tasks: "{{ tasks_path }}/2fa_client.yml"
- import_tasks: "{{ tasks_path }}/motd.yml" - import_tasks: "{{ tasks_path }}/motd.yml"
handlers: handlers: