fixing

ansible/playbooks/role-rocky-sigul-bridge.yml

@@ -79,7 +79,7 @@
     - name: Enable the sigul bridge
       systemd:
         name: sigul_bridge
-        state: running
+        state: restarted
         enabled: true
 
     - name: Touching run file that ansible has ran here

ansible/playbooks/vars/sigul_bridge.yml

@@ -3,13 +3,14 @@
 sigul_type: bridge
 sigul_ipa_realm: "ROCKYLINUX.ORG"
 sigul_bridge_cert_nickname: "sigul-bridge"
-sigul_principal: "sigul/{{ inventory_hostname }}@{{ sigul_ipa_realm }}"
+sigul_principal: "sigul/sigul.rockylinux.org@{{ sigul_ipa_realm }}"
 sigul_keytab: /etc/sigul.keytab
 sigul_nss_dir: /etc/pki/tls/sigul
 
 # ipa-getcert variables
-getcert_name: "{{ ansible_fqdn }}"
-getcert_owner: sigul
-getcert_nss_db_dir: "{{ sigul_nss_dir }}"
-getcert_nss_nickname: "{{ sigul_bridge_cert_nickname }}"
-getcert_nss: true
+ipa_getcert_nss: true
+ipa_getcert_requested_hostnames:
+  - name: "{{ ansible_fqdn }}"
+    owner: sigul
+    nss_db_dir: "{{ sigul_nss_dir }}"
+    nss_nickname: "{{ sigul_bridge_cert_nickname }}"

ansible/playbooks/vars/sigul_server.yml

@@ -3,11 +3,12 @@
 sigul_type: server
 sigul_server_cert_nickname: "sigul-server"
 sigul_nss_dir: /etc/pki/tls/sigul
-sigul_bridge_name: "sigul-bridge.rockylinux.org"
+sigul_bridge_name: ""
 
 # ipa-getcert variables
-getcert_name: "{{ ansible_fqdn }}"
-getcert_owner: sigul
-getcert_nss_db_dir: "{{ sigul_nss_dir }}"
-getcert_nss_nickname: "{{ sigul_bridge_cert_nickname }}"
-getcert_nss: true
+ipa_getcert_nss: true
+ipa_getcert_requested_hostnames:
+  - name: "{{ ansible_fqdn }}"
+    owner: sigul
+    nss_db_dir: "{{ sigul_nss_dir }}"
+    nss_nickname: "{{ sigul_bridge_cert_nickname }}"