don't use /export for ldap data directory on slaves
This commit is contained in:
parent
7238a595f2
commit
0163a5f932
1 changed files with 34 additions and 20 deletions
|
|
@ -7,20 +7,19 @@
|
||||||
- openldap-servers
|
- openldap-servers
|
||||||
- ldapvi
|
- ldapvi
|
||||||
|
|
||||||
- name: fix selinux context from ldap data directory
|
- block:
|
||||||
|
- name: fix selinux context from ldap data directory
|
||||||
sefcontext:
|
sefcontext:
|
||||||
path: /export/ldap(/.*)?
|
path: /export/ldap(/.*)?
|
||||||
setype: slapd_db_t
|
setype: slapd_db_t
|
||||||
|
- name: create ldap data directory
|
||||||
- name: create ldap data directory
|
|
||||||
file:
|
file:
|
||||||
path: /export/ldap
|
path: /export/ldap
|
||||||
state: directory
|
state: directory
|
||||||
mode: 0700
|
mode: 0700
|
||||||
owner: ldap
|
owner: ldap
|
||||||
group: ldap
|
group: ldap
|
||||||
|
- name: link ldap data directory
|
||||||
- name: link ldap data directory
|
|
||||||
file:
|
file:
|
||||||
path: /srv/ldap
|
path: /srv/ldap
|
||||||
src: /export/ldap
|
src: /export/ldap
|
||||||
|
|
@ -28,6 +27,21 @@
|
||||||
owner: root
|
owner: root
|
||||||
group: root
|
group: root
|
||||||
follow: false
|
follow: false
|
||||||
|
when: ldap_master is defined
|
||||||
|
|
||||||
|
- block:
|
||||||
|
- name: fix selinux context from ldap data directory
|
||||||
|
sefcontext:
|
||||||
|
path: /srv/ldap(/.*)?
|
||||||
|
setype: slapd_db_t
|
||||||
|
- name: create ldap data directory
|
||||||
|
file:
|
||||||
|
path: /srv/ldap
|
||||||
|
state: directory
|
||||||
|
mode: 0700
|
||||||
|
owner: ldap
|
||||||
|
group: ldap
|
||||||
|
when: ldap_msater is not defined
|
||||||
|
|
||||||
- name: remove nss cert databases
|
- name: remove nss cert databases
|
||||||
file:
|
file:
|
||||||
|
|
|
||||||
Loading…
Add table
Reference in a new issue