ipa/client: enable for fedocal in prod
Signed-off-by: Nils Philippsen <nils@redhat.com>
This commit is contained in:
parent
55755bfe9b
commit
cf73a8360a
2 changed files with 2 additions and 5 deletions
|
@ -15,8 +15,7 @@ tcp_ports: [ 80, 443,
|
||||||
# Neeed for rsync from log01 for logs.
|
# Neeed for rsync from log01 for logs.
|
||||||
custom_rules: [ '-A INPUT -p tcp -m tcp -s 10.3.163.39 --dport 873 -j ACCEPT', '-A INPUT -p tcp -m tcp -s 192.168.1.59 --dport 873 -j ACCEPT' ]
|
custom_rules: [ '-A INPUT -p tcp -m tcp -s 10.3.163.39 --dport 873 -j ACCEPT', '-A INPUT -p tcp -m tcp -s 192.168.1.59 --dport 873 -j ACCEPT' ]
|
||||||
|
|
||||||
fas_client_groups: sysadmin-noc,sysadmin-web,sysadmin-veteran
|
primary_auth_source: ipa
|
||||||
|
|
||||||
ipa_host_group: fedocal
|
ipa_host_group: fedocal
|
||||||
ipa_host_group_desc: Fedora calendaring service
|
ipa_host_group_desc: Fedora calendaring service
|
||||||
ipa_client_shell_groups:
|
ipa_client_shell_groups:
|
||||||
|
|
|
@ -15,8 +15,7 @@
|
||||||
- rkhunter
|
- rkhunter
|
||||||
- nagios_client
|
- nagios_client
|
||||||
- hosts
|
- hosts
|
||||||
- { role: ipa/client, when: env == "staging" }
|
- ipa/client
|
||||||
- { role: fas_client, when: env != "staging" }
|
|
||||||
- rsyncd
|
- rsyncd
|
||||||
- sudo
|
- sudo
|
||||||
- { role: openvpn/client,
|
- { role: openvpn/client,
|
||||||
|
@ -28,7 +27,6 @@
|
||||||
- import_tasks: "{{ tasks_path }}/yumrepos.yml"
|
- import_tasks: "{{ tasks_path }}/yumrepos.yml"
|
||||||
|
|
||||||
tasks:
|
tasks:
|
||||||
- import_tasks: "{{ tasks_path }}/2fa_client.yml"
|
|
||||||
- import_tasks: "{{ tasks_path }}/motd.yml"
|
- import_tasks: "{{ tasks_path }}/motd.yml"
|
||||||
|
|
||||||
handlers:
|
handlers:
|
||||||
|
|
Loading…
Add table
Add a link
Reference in a new issue