foo.sh/ansible
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

add gssapi auth support for ldap server

Browse source
This commit is contained in:
Timo Makinen 2019-06-06 01:58:04 +03:00
parent 9cd3910f42
commit d512c8b8bd
2 changed files with 10 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

1
roles/ldap/server/meta/main.yml
View file

@ -1,5 +1,6 @@
--- ---
dependencies: dependencies:
- {role: kerberos/client}
- {role: ldap/client} - {role: ldap/client}
- {role: saslauthd} - {role: saslauthd}

9
roles/ldap/server/tasks/main.yml
View file

@ -4,6 +4,7 @@
name: "{{ item }}" name: "{{ item }}"
state: installed state: installed
with_items: with_items:
- cyrus-sasl-gssapi
- openldap-servers - openldap-servers
- ldapvi - ldapvi
@ -173,3 +174,11 @@
name: slapd name: slapd
state: started state: started
enabled: true enabled: true
- name: create slapd keytab
import_role:
name: kerberos/keytab
vars:
keytab: /etc/openldap/slapd.keytab
principals: ["ldap/{{ inventory_hostname }}@{{ kerberos_realm }}"]
group: ldap