2020-12-10 07:33:09 +00:00
|
|
|
[ipaservers]
|
|
|
|
ipa001.rockylinux.org ansible_host=10.100.1.110
|
|
|
|
ipa002.rockylinux.org ansible_host=10.100.1.111
|
|
|
|
|
|
|
|
[ipaserver]
|
|
|
|
ipa001.rockylinux.org ansible_host=10.100.1.110
|
|
|
|
|
|
|
|
[ipaserver:vars]
|
|
|
|
ipaserver_domain=rockylinux.org
|
|
|
|
ipaserver_realm=ROCKYLINUX.ORG
|
2020-12-11 21:00:14 +00:00
|
|
|
ipaserver_setup_dns=true
|
2020-12-10 07:33:09 +00:00
|
|
|
ipaserver_setup_kra=true
|
2020-12-11 21:00:14 +00:00
|
|
|
ipaserver_auto_forwarders=true
|
2020-12-10 07:33:09 +00:00
|
|
|
ipaserver_no_host_dns=true
|
|
|
|
ipaserver_hostname=ipa001.rockylinux.org
|
2020-12-11 21:00:14 +00:00
|
|
|
ipaserver_allow_zone_overlap=true
|
|
|
|
ipaserver_setup_firewalld=true
|
2020-12-10 07:33:09 +00:00
|
|
|
ipaclient_no_ntp=true
|
2020-12-11 21:00:14 +00:00
|
|
|
ipaclient_mkhomedir=true
|
2020-12-10 07:33:09 +00:00
|
|
|
ipaserver_reverse_zones=["1.100.10.in-addr.arpa."]
|
|
|
|
|
|
|
|
[ipareplicas]
|
|
|
|
ipa002.rockylinux.org ansible_host=10.100.1.111
|
|
|
|
|
|
|
|
[ipareplicas:vars]
|
|
|
|
ipaadmin_principal=admin
|
|
|
|
ipaclient_no_ntp=true
|
2020-12-11 21:00:14 +00:00
|
|
|
ipaclient_mkhomedir=true
|
2020-12-10 07:33:09 +00:00
|
|
|
ipaserver_realm=ROCKYLINUX.ORG
|
|
|
|
ipaserver_hostname=ipa002.rockylinux.org
|
|
|
|
ipareplica_domain=rockylinux.org
|
2020-12-11 21:00:14 +00:00
|
|
|
ipareplica_auto_forwarders=true
|
|
|
|
ipareplica_setup_firewalld=true
|
|
|
|
ipareplica_setup_ca=true
|
|
|
|
ipareplica_setup_kra=true
|
|
|
|
ipareplica_setup_dns=true
|
2020-12-10 08:43:19 +00:00
|
|
|
ipa_dns_master=10.100.1.110
|
2020-12-10 07:33:09 +00:00
|
|
|
|
2020-12-11 21:00:14 +00:00
|
|
|
# This is for example purposes - it is likely we'll use "all" instead of
|
|
|
|
# putting everything under an ipaclient
|
2020-12-10 07:33:09 +00:00
|
|
|
[ipaclients]
|
|
|
|
build-a-box.rockylinux.org ansible_host=10.100.1.112
|
|
|
|
|
|
|
|
[ipaclients:vars]
|
|
|
|
ipaclient_domain=rockylinux.org
|
|
|
|
ipaadmin_principal=admin
|
|
|
|
ipaclient_no_ntp=true
|
2020-12-11 21:00:14 +00:00
|
|
|
ipaclient_mkhomedir=true
|