nazunalika
8d999fbf5d
CNAME host
2021-01-23 23:44:22 -07:00
nazunalika
0a9ea2778c
need a rehash
2021-01-23 19:45:58 -07:00
nazunalika
12767283c6
service accounts
2021-01-23 15:51:55 -07:00
nazunalika
62974f97c2
fixing names
2021-01-23 14:38:54 -07:00
nazunalika
703eb27176
add ipauser disable
2021-01-23 14:37:28 -07:00
nazunalika
59c24a1875
fixing modules
2021-01-23 02:59:28 -07:00
nazunalika
47b08cd1b8
rabbitmq
2021-01-22 23:27:49 -07:00
nazunalika
76b7d9d6ef
fixing pam config to match
2021-01-22 18:29:56 -07:00
nazunalika
3d395c0a6d
account services
2021-01-22 05:33:00 -07:00
nazunalika
6e6fbee6fb
comment clarification
2021-01-21 15:20:13 -07:00
nazunalika
db25755b52
reduce banner
2021-01-21 15:12:18 -07:00
nazunalika
d20f9a5e61
fix hardening
2021-01-21 15:05:35 -07:00
nazunalika
a283fd378f
mantis
2021-01-20 17:55:13 -07:00
nazunalika
992f4cddd9
naming consistency
2021-01-20 16:56:01 -07:00
nazunalika
ccebf54810
forgot sigul service
2021-01-19 22:17:01 -07:00
nazunalika
87bd02945a
sigul and koji
2021-01-19 22:05:28 -07:00
nazunalika
1747f1f76e
noggin theme
2021-01-17 23:34:42 -07:00
nazunalika
b032f130b8
merging some internal changes for awx
2021-01-17 20:46:06 -07:00
nazunalika
a3c3ae91d6
ipa changes
2021-01-17 18:49:28 -07:00
nazunalika
dc1f097622
add in binder adhoc
2021-01-17 15:15:39 -07:00
nazunalika
4f1ae71031
getcert
2021-01-17 14:41:18 -07:00
nazunalika
a784cdd6cc
ipa getcert adhoc
2021-01-17 13:04:57 -07:00
nazunalika
608c1e24c8
fixes
2021-01-14 21:28:47 -07:00
nazunalika
a01b607299
ignoring inventories
2021-01-14 21:19:35 -07:00
nazunalika
5b3293c2f5
email uniqueness constraints
2021-01-10 16:47:00 -07:00
nazunalika
852be5c8cd
fixing other bits
2021-01-10 03:22:41 -07:00
nazunalika
31d777eebe
dynamic updates should be true
2021-01-10 03:08:32 -07:00
nazunalika
ad81b58d3c
prepping for AWX future
2021-01-09 21:47:18 -07:00
nazunalika
60580742fc
upcoming bz and account services
2021-01-09 17:49:05 -07:00
nazunalika
8686535611
add support for member managers
2021-01-05 15:51:17 -07:00
nazunalika
80a4efd099
force ipa_admin requirement in some adhoc
2021-01-05 15:24:00 -07:00
nazunalika
9928289f2e
rename to hidden
2021-01-05 14:29:47 -07:00
nazunalika
adfb259cbf
preparing for account services
2021-01-05 14:27:14 -07:00
nazunalika
ca80358b46
ipsilon changes
2021-01-05 13:46:08 -07:00
nazunalika
91caf03464
fix gitignore for vaults
2021-01-04 13:25:16 -07:00
nazunalika
abbfcad909
removing vaults
2021-01-04 13:20:32 -07:00
nazunalika
8a8958b46c
ignoring vaults
2021-01-04 13:19:24 -07:00
nazunalika
786be11457
preparing account services
2021-01-04 12:31:13 -07:00
nazunalika
6c05b159cc
vars for vaults
2021-01-04 12:01:44 -07:00
nazunalika
cdce2cc45e
keytab checks
2021-01-04 01:38:13 -07:00
nazunalika
b60dcb31c4
kojid
2021-01-04 01:25:53 -07:00
nazunalika
96bb3a6b5a
ipa dns recorder
2021-01-03 13:07:12 -07:00
nazunalika
cb69d9eca9
rearranging
2021-01-02 22:20:20 -07:00
nazunalika
b45404cdc2
rearranging
2021-01-02 22:18:47 -07:00
nazunalika
d2dc1bef07
Add missing service account and privs
2021-01-01 20:50:00 -07:00
nazunalika
8e2f81c415
Ansible 2.7+ Best Practices and GetKeyTab Fixes
...
-> Changed specific pieces that are recommended to be changed in Ansible
2.7 and higher (such as using fail_msg and success_msg, not just msg for
assertions
-> Improved the getkeytab adhoc playbook for flexibility and delegations
against a IPA server, as well as forcing the choice of the user with
permissions that can perform the action rather than the default "admin"
user in FreeIPA as a security fix.
2021-01-01 20:14:24 -07:00
nazunalika
17b7ef186e
fixing spacing and tab issues
2020-12-31 20:05:27 -07:00
nazunalika
4ff14a8641
kojihub changes
2020-12-31 14:49:48 -07:00
nazunalika
99e163b220
slurry of changes and fixes
2020-12-30 02:22:58 -07:00
nazunalika
7d8ed3bbe5
adhoc rabbitmq user
2020-12-29 17:03:36 -07:00
nazunalika
b8ea1c51a1
gitlab external database prep
2020-12-28 20:43:17 -07:00
nazunalika
5f2426d840
Add requirements and fix ipa vars
2020-12-27 19:27:45 -07:00
nazunalika
928c944bb4
rabbitmq
2020-12-27 13:04:13 -07:00
nazunalika
ca68f884b7
Updating/Adding rabbitmq vars and playbooks
2020-12-26 20:39:02 -07:00
nazunalika
496e2d208d
Updating/Adding rabbitmq vars and playbooks
2020-12-26 20:36:14 -07:00
nazunalika
6c27e93d7d
add rabbitmq requirement
2020-12-26 09:55:46 -07:00
Louis Abel
7bfc3c3b27
Merge pull request #14956 from rocky-linux/develop
...
Holiday End of Development - IPA, Koji, plus other fixes
2020-12-24 10:51:25 -07:00
nazunalika
942da4ce48
quick correction on vars for koji
2020-12-24 10:45:17 -07:00
Louis Abel
319584355f
Merge pull request #14955 from samveen/langcheck
...
minor language nits picked
2020-12-24 10:42:52 -07:00
nazunalika
503235ecd3
gitlab ssl changes
2020-12-23 17:02:40 -07:00
nazunalika
83b76d9393
ipa groups
2020-12-23 16:19:28 -07:00
nazunalika
d30b1e6d9a
add a note
2020-12-23 12:25:41 -07:00
nazunalika
fe7fb4bb07
quick fixes
2020-12-23 05:21:01 -07:00
nazunalika
7a010775c9
adding kojihub
2020-12-23 03:52:34 -07:00
nazunalika
8c1a54dafb
Add ipa-getkeytab playbook
2020-12-20 22:45:55 -07:00
nazunalika
4a15dfc093
Adding in missing adhoc playbook
2020-12-20 22:34:55 -07:00
nazunalika
8dc0268a50
IPA Privileges
...
This release adds support for privileges and roles for the initial IPA
team accounts.
2020-12-20 22:05:52 -07:00
nazunalika
a491898f28
staging idea for koji
2020-12-18 15:52:05 -07:00
Chris Cowley
bae96c0431
Add a section to the repo for architecture ( #14944 )
...
* Proposal for monitoring responsibilities
* added an architecture diagram for Prometheus
* install graphviz
* Only run the diagrams action when someone commits a diagram
* Filled out the architecture README
* Install node Prometheus Node Exporter on all hosts
Co-authored-by: Chris Cowley <chris.cowley@fr.clara.net>
2020-12-18 16:03:49 -05:00
nazunalika
c0c8ea1ec6
fixing spelling errors
2020-12-18 01:17:53 -07:00
nazunalika
239ae1a025
Attempt Lab Rollout
2020-12-18 00:43:21 -07:00
nazunalika
e3b6aa652f
add custom gitlab template
2020-12-18 00:39:37 -07:00
nazunalika
c6323199f4
Infrastructure GitLab Updates
...
In this push, we are making a decent amount of updates to the gitlab
playbooks as well as updating the README. See below for the changes:
* README updated for further clarity
* GitLab role with further reconfiguration for group lookups
* GitLab role with further reconfiguration to disable built-in nginx
* nginx configuration added and provided to work with omnibus
* GitLab variables updated
2020-12-17 23:40:14 -07:00
Louis Abel
5383853681
Merge pull request #14947 from nasirhm/add_gitlab_ee_role
...
[init] Initialize Gitlab EE Role
2020-12-17 14:59:12 -07:00
nasirhm
83283fcf4e
🔧 fix LDAP and Domain name
...
Signed-off-by: nasirhm <nasirhussainm14@gmail.com>
2020-12-18 02:47:46 +05:00
nazunalika
309b6739b8
ipsilon missing a few vars
2020-12-16 19:35:30 -07:00
nazunalika
f15a9d3db0
adding gitlab primers with ipa fixes
2020-12-16 19:34:13 -07:00
nasirhm
ec22cb4773
🔧 Fix ansible YAML
...
Signed-off-by: nasirhm <nasirhussainm14@gmail.com>
2020-12-17 01:31:42 +05:00
nazunalika
1ab71a2d4d
repo changes and ipa fqdn notes
2020-12-16 00:09:58 -07:00
nazunalika
8e98dc04e0
Ipsilon Ready
...
This push is here to note that ipsilon is completed and ready to go. The
infrastructure team at some point will need certificates, whether this
is from let's encrypt or otherwise if this service is used.
2020-12-15 20:15:50 -07:00
nazunalika
06f3c0d338
fixing additional errors from testing
2020-12-15 18:26:57 -07:00
nazunalika
8e5cae005d
updating ansible readme for lint
2020-12-15 00:31:41 -07:00
Samveen Gulati
2c398aefc2
minor language nits picked
2020-12-15 10:43:04 +05:30
nazunalika
1811f9343e
make linter happy
2020-12-14 17:52:49 -07:00
nazunalika
08f6ff985b
make linter happy
2020-12-14 17:47:22 -07:00
nazunalika
de05e55cef
IdM and Variable Fixes
...
Identity management Team in their testing found several issues while
testing the playbooks. To ensure they continue working on deployment and
in testing, we have identified and fixed the following issues:
- Inventory variables moved to separate main.yml files were not in yaml
format
- role-rocky-ipa-client.yml was not directly pointing to its
collection/role
- role-rocky-ipa-replica.yml was not directly pointing to its
collection/role
2020-12-14 16:33:16 -07:00
nazunalika
b282c97daa
making sure all systems get the ipa client vars
2020-12-14 14:31:01 -07:00
nasirhm
8f3bf01869
🎉 Initialized Playbook for Gitlab EE configuration.
...
Signed-off-by: nasirhm <nasirhussainm14@gmail.com>
2020-12-15 01:57:09 +05:00
Derek Page
c76c58b139
\#14939 - Fixing .com to .org - It was bothering me
2020-12-14 08:55:08 -05:00
Alexander Gabert
b68cf49de9
typo
2020-12-14 11:20:20 +01:00
nazunalika
ce8ba1d52b
had a duplicate ipsilon role file
2020-12-14 02:23:36 -07:00
nazunalika
875a3bf917
community.mysql should be a collection
2020-12-14 02:17:52 -07:00
nazunalika
e19edd02ff
make linter happy
2020-12-14 02:14:48 -07:00
nazunalika
73b304758e
make linter happy
2020-12-14 02:04:40 -07:00
nazunalika
f32720f0de
adding ipsilon
2020-12-14 02:01:23 -07:00
nazunalika
7a1de933d4
making linter happy
2020-12-14 00:06:29 -07:00
nazunalika
353d4bb0cf
fixing issue #582
2020-12-13 23:57:25 -07:00
Louis Abel
e9106cdb69
Merge pull request #581 from derekmpage/issue-183/chrony
...
Issue #183/chrony
2020-12-13 22:35:38 -07:00
Derek Page
9caf9ced6b
issue-183 - make lint happy
2020-12-13 23:09:20 -05:00
Derek Page
faf9e6fd48
issue-183 - make lint happy
2020-12-13 23:04:42 -05:00