mirror of
https://github.com/rocky-linux/infrastructure
synced 2024-11-10 16:01:23 +00:00
de05e55cef
Identity management Team in their testing found several issues while testing the playbooks. To ensure they continue working on deployment and in testing, we have identified and fixed the following issues: - Inventory variables moved to separate main.yml files were not in yaml format - role-rocky-ipa-client.yml was not directly pointing to its collection/role - role-rocky-ipa-replica.yml was not directly pointing to its collection/role
64 lines
1.4 KiB
YAML
64 lines
1.4 KiB
YAML
---
|
|
# Creates an IPA replica
|
|
|
|
- name: Configure IPA server
|
|
hosts: ipareplicas
|
|
become: true
|
|
vars_files:
|
|
- vars/encpass.yml
|
|
|
|
# This is to try to avoid the handler issue in pre/post tasks
|
|
handlers:
|
|
- import_tasks: handlers/main.yml
|
|
|
|
pre_tasks:
|
|
- name: Check if ansible cannot be run here
|
|
stat:
|
|
path: /etc/no-ansible
|
|
register: no_ansible
|
|
|
|
- name: Verify if we can run ansible
|
|
assert:
|
|
that:
|
|
- "not no_ansible.stat.exists"
|
|
msg: "/etc/no-ansible exists - skipping run on this node"
|
|
|
|
- name: Ensure 'dns=none' is set for Network Manager
|
|
ini_file:
|
|
path: /etc/NetworkManager/NetworkManager.conf
|
|
state: present
|
|
no_extra_spaces: true
|
|
section: main
|
|
option: dns
|
|
value: none
|
|
owner: root
|
|
group: root
|
|
mode: '0644'
|
|
backup: true
|
|
notify:
|
|
- reload_networkmanager
|
|
|
|
- name: Ensure resolv.conf is pointing to main master
|
|
template:
|
|
src: etc/resolv.conf.j2
|
|
dest: /etc/resolv.conf
|
|
owner: root
|
|
group: root
|
|
mode: '0644'
|
|
backup: true
|
|
notify:
|
|
- reload_networkmanager
|
|
|
|
roles:
|
|
- role: freeipa.ansible_freeipa.ipareplica
|
|
state: present
|
|
|
|
post_tasks:
|
|
- name: Touching run file that ansible has ran here
|
|
file:
|
|
path: /var/log/ansible.run
|
|
state: touch
|
|
mode: '0644'
|
|
owner: root
|
|
group: root
|