Infrastructure/ansible
1
0
Fork 0
Code Issues Pull requests 6 Projects Releases Packages Wiki Activity Actions
38908 commits 9 branches 0 tags 111 MiB
Commit graph

42 commits

Author SHA1 Message Date
Andrew Heath
a961a5ed7d updating playbooks to work with ansible 2.14 2023-05-18 15:28:34 -04:00
Kevin Fenzi
71bdcd837f ansible 2.14 tweak for bastion playbook 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2023-05-17 18:14:05 -07:00
Kevin Fenzi
5a8f149f62 bastion: bastion13 has to have vpn to enroll in ipa 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2021-05-05 15:39:18 -07:00
Kevin Fenzi
a9235bfd3d bastion: move ipa client after vpn 
We need vpn to reach the ipa servers.
Instead lets try and fix this by not specifying the group in
nagios/client.

Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2021-05-05 15:22:57 -07:00
Kevin Fenzi
bee623abd2 bastion: move ipa/client before openvpn-server as it needs sysadmin-main group now 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2021-05-05 15:05:32 -07:00
Kevin Fenzi
556ad722f2 bastion: move openvpn server role before nagios_client that requires a /etc/openvpn/server/ccd dir 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2021-05-05 15:01:58 -07:00
Kevin Fenzi
94bdcff8ff bastion: add fasjon role to bastion 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2021-03-25 13:28:32 -07:00
Nils Philippsen
d93246f23c ipa/client: enable for bastion in prod 
Signed-off-by: Nils Philippsen <nils@redhat.com>
 2021-03-24 13:44:32 +01:00
Mark O'Brien
fdcd55c176 add ipa/client role to the rest of the playbookd for staging 2021-02-12 14:22:40 +00:00
Stephen Smoogen
5282048e64 remove some PHX2 hosts which do not exist 2020-06-15 15:21:32 -04:00
Kevin Fenzi
4fe5df7f63 bastion: clean up logic so server will install on bastion01.iad2 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2020-06-11 15:32:10 -07:00
Paul W. Frields
9324e76c28 bastion: remove with_items from package 2019-06-11 15:05:10 +00:00
Kevin Fenzi
80d8694583 ansible: fix -- mistake for import_playbook 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2019-05-20 18:23:42 +00:00
Kevin Fenzi
2d1cf41c9f ansible: fix the virt-create calls 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2019-05-20 18:19:27 +00:00
Kevin Fenzi
2dfb98136a ansible: more cleanup from group name changes. 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2019-05-20 18:10:46 +00:00
Kevin Fenzi
4b31ac5152 ansible: Change all our group names from foo-bar to foo_bar or foo-bar-baz to foo_bar_baz 
In ansible 2.8 the - character isn't supposed to be valid in group names.
While we could override this, might has well just bite the bullet and change it.
So, just switch all group names to use _ instead of -

Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2019-05-20 17:38:09 +00:00
Stephen Smoogen
3e3632fa62 fix all playbooks so that yumrepos is a pre_task 2018-10-31 15:38:38 +00:00
Stephen Smoogen
f81cb66458 put the openvpn client on bastion13 2017-11-29 02:10:26 +00:00
Stephen Smoogen
09746514b8 put in bastion13 and start building 2017-11-28 20:41:28 +00:00
Kevin Fenzi
afef097a3d switch all the include tasks to import tasks 2017-10-17 17:37:03 +00:00
Kevin Fenzi
d9ee0059b4 typo on a massive scale 2017-10-15 20:33:11 +00:00
Kevin Fenzi
69fd8d117a switch all the handlers to import and drop the global static import 2017-10-15 20:29:59 +00:00
Kevin Fenzi
1bf960425f this needs to be imported not included 2017-10-15 19:54:19 +00:00
Kevin Fenzi
ceff9bfca4 first stab at replacing include with include_playbook or includ_tasks 2017-10-15 19:46:08 +00:00
Patrick Uiterwijk
936e8b261a yum accepted pkg=, package calls it name= 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2017-10-09 00:38:26 +02:00
Patrick Uiterwijk
73f695ab72 Move the rest of yum: to package: as well 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2017-10-09 00:38:26 +02:00
Stephen Smoogen
d0b6c8ce06 and this is how you break everything before going on a week vacation 2017-05-05 22:12:33 +00:00
Kevin Fenzi
0acfaa2a7e Fix handlers, roles, and tasks to be handlers_path, roles_path and tasks_path so as not to conflict with ansible variables. 
Fix duplicate definition of become default that was in group_vars/all as well as vars/global.
 2017-04-13 15:46:14 +00:00
Kevin Fenzi
241c6144ac add opendkim role for bastion 2017-02-14 19:33:55 +00:00
Ralph Bean
2226a9eae9 s/nagios_client/nagios\/client/g 2016-02-23 02:33:30 +00:00
Kevin Fenzi
facc6b217c Drop 16 lines that we can collapse into one line. 2015-08-18 19:26:55 +00:00
Stephen Smoogen
f2c76feb17 Merge branch 'master' of /git/ansible 2015-04-30 23:05:11 +00:00
Stephen Smoogen
7743b393dd and now we can rebuild bastion-comm.qa bwahahahaha 2015-04-30 23:05:06 +00:00
Kevin Fenzi
63417aa34d Slow links lead to typos 2015-04-30 23:03:13 +00:00
Kevin Fenzi
1497ac1f8a Fix syntax 2015-04-30 23:02:37 +00:00
Kevin Fenzi
20c480a0ce Switch bastion-comm01.qa to ansible 2015-04-30 23:00:34 +00:00
Kevin Fenzi
d64ab29c0e New ansible doesn't like expanding {{ private }} in the same list of vars files it's defined in. 2015-01-09 22:59:18 +00:00
Kevin Fenzi
7d8a44da92 bastion-comm01.qa is actually still in puppet. Exclude it here until we migrate it. 2014-11-13 16:50:49 +00:00
Ralph Bean
1e49aa493d Remove all accelerate-mode knobs and toggles now that pipelining is a go. 2014-11-12 19:15:06 +00:00
Kevin Fenzi
bbc5a7840c No pam_shield for bastion either 2014-10-10 15:30:23 +00:00
Kevin Fenzi
b96e6ec548 Add packager_alias 2014-10-08 23:51:16 +00:00
Kevin Fenzi
a50758d90e A basic first cut at a bastion role. Going to use on bastion02 2014-10-08 22:37:24 +00:00