mirror of https://github.com/freeipa/ansible-freeipa.git synced 2026-03-26 21:33:05 +00:00

Go to file

Thomas Woerner 397acc01db ipaclient: Make krb5 DNS lookup possible in cluster environments

krb5 DNS discovery was not possible in cluster environments as the server
list from groups.ipaserver was used all the time. DNS discovery is though
only used if no servers are given.

The new setting ipaclient_no_dns_lookup has been added to make sure that
DNS lookup is used in the first place and can be disabled easily with this
setting. There is also a new way to override servers per client in the
inventory file with ipaclient_servers.

Two new settings have been added:

ipaclient_no_dns_lookup (bool, default: no)
  Set to 'yes' to use groups.ipaserver in cluster environments as servers
  for the clients. This deactivates DNS lookup in krb5.

ipaclient_servers (list of strings, default: undefined)
  Manually override list of servers for example in a cluster environment on
  a per client basis. The list of servers is normally taken from from
  groups.ipaserver in cluster environments.

2018-05-18 15:06:53 +02:00

action_plugins

Modify ipahost module: the authentication is done locally on the controller

2017-08-10 16:54:44 +02:00

inventory

Add example client and cluster playbooks and also cluster inventory file

2018-04-04 16:23:26 +02:00

library

Incorporate "Use os.path.isfile() and isdir()" from freeipa upstream

2018-04-04 15:11:34 +02:00

module_utils

New role for ipareplica installation

2018-04-04 16:19:37 +02:00

roles

ipaclient: Make krb5 DNS lookup possible in cluster environments

2018-05-18 15:06:53 +02:00

CLIENT.md

ipaclient: Make krb5 DNS lookup possible in cluster environments

2018-05-18 15:06:53 +02:00

COPYING

Added GPLv3 COPYING file, fixed licenses in ipaconf, krb5 and sssd roles

2018-02-09 16:33:53 +01:00

install-client.yml

Add example client and cluster playbooks and also cluster inventory file

2018-04-04 16:23:26 +02:00

install-cluster.yml

Add example client and cluster playbooks and also cluster inventory file

2018-04-04 16:23:26 +02:00

install-replica.yml

New role for ipareplica installation

2018-04-04 16:19:37 +02:00

install-server.yml

New role for ipaserver installation

2017-12-01 13:24:01 +01:00

README.md

Create README.md

2018-02-01 06:49:47 +01:00

requirements.txt

Added requirements.txt file

2018-02-09 16:49:57 +01:00

SERVER.md

Update SERVER.md

2018-02-01 07:31:39 +01:00

setup.cfg

Introduce setup files that copy roles to relevant directories

2018-02-13 17:15:03 +02:00

setup.py

Introduce setup files that copy roles to relevant directories

2018-02-13 17:15:03 +02:00

site.yml

Modify ipahost module: the authentication is done locally on the controller

2017-08-10 16:54:44 +02:00

uninstall-client.yml

Add example client and cluster playbooks and also cluster inventory file

2018-04-04 16:23:26 +02:00

uninstall-cluster.yml

Add example client and cluster playbooks and also cluster inventory file

2018-04-04 16:23:26 +02:00

uninstall-replica.yml

New role for ipareplica installation

2018-04-04 16:19:37 +02:00

uninstall-server.yml

New role for ipaserver installation

2017-12-01 13:24:01 +01:00

README.md

FreeIPA Ansible roles

This repository contains Ansible roles and playbooks to install and uninstall FreeIPA servers and clients. A role for replica is in the work, but not functional so far.

Note: The ansible playbooks and roles require a configured ansible environment where the ansible nodes are reachanble and are properly set up to have an IP address and a working package manager.

Supported FreeIPA versions

For now only FreeIPA versions 4.5 and up are supported. The client role should also be functional with FreeIPA 4.4.

Roles

Client

Server