|
|
532e47b36c
|
dovecot: Finish up dovecot install
|
2021-03-11 05:27:42 +00:00 |
|
|
|
25417ed9eb
|
kerberos/keytab: No need to check if spn exists
Running ktadd will fail anyway if no principal is found from server.
|
2021-03-11 05:12:47 +00:00 |
|
|
|
fc5b9a6246
|
Add python lint tools to adm hosts
|
2021-03-10 21:46:30 +00:00 |
|
|
|
dc51edb84a
|
ldap/server: Initial version of ldapspn helper script
ldapspn supports listing, creating and deleting Kerberos service
principals.
|
2021-03-10 21:34:59 +00:00 |
|
|
|
aaae860b22
|
base: Imediately mount /tmp using tmpfs
|
2021-03-09 21:35:48 +00:00 |
|
|
|
6c9d69345d
|
grossd: Remove swap file
|
2021-03-09 20:57:18 +00:00 |
|
|
|
b6240b857f
|
Add sendmail and grossd to mail hosts
|
2021-03-09 20:53:12 +00:00 |
|
|
|
c74fb52726
|
Use sssd for mail hosts instead of nslcd
|
2021-03-09 20:51:10 +00:00 |
|
|
|
68810aa8c2
|
grossd: Initial version of module
|
2021-03-09 20:49:51 +00:00 |
|
|
|
2cbe0b93af
|
foor.sh-repo: Initial version
|
2021-03-09 19:18:16 +00:00 |
|
|
|
3bc8dbcb1c
|
Install thunderbird to shell servers
|
2021-03-02 22:19:12 +00:00 |
|
|
|
7339affbbc
|
Skip initial setup packages from shell servers
|
2021-03-02 22:18:52 +00:00 |
|
|
|
32b8bfd48b
|
thinlinc: Don't disable initial setup here
|
2021-03-02 22:18:23 +00:00 |
|
|
|
7518666053
|
thinlinc: Fix typo
|
2021-03-02 18:58:40 +00:00 |
|
|
|
6a1f0a7870
|
thinlinc: Disable running gnome-initial-setup
|
2021-03-02 18:39:39 +00:00 |
|
|
|
df76b8f7e7
|
thinlinc: Disable intro and desktop selection
This will disable introduction message during login and force
desktop to GNOME.
|
2021-03-02 18:31:53 +00:00 |
|
|
|
2ed0ce676f
|
Autocreate user home dirs for shell hosts
|
2021-03-01 21:43:03 +00:00 |
|
|
|
8e95f29f61
|
mkhomedir: Initial version of role
|
2021-03-01 21:42:43 +00:00 |
|
|
|
fabcc2fe88
|
mirror/thinlinc: Link data directory to web root
|
2021-02-24 04:49:50 +00:00 |
|
|
|
9afdda987e
|
mirror/base: Convert everything to run on Apache
|
2021-02-24 04:49:08 +00:00 |
|
|
|
80fe81cf83
|
Give CentOS 8 installer explicit network device
Seems that install works without defining this but after install is
completed all interfaces are converted to DHCP which is default.
|
2021-02-23 18:01:34 +00:00 |
|
|
|
179f96f60a
|
Use bootdev instead of ksdevice which is deprecated
|
2021-02-23 18:01:04 +00:00 |
|
|
|
bc692e2163
|
Use CentOS 8 for mirror hosts
|
2021-02-23 17:36:17 +00:00 |
|
|
|
5199c89a04
|
Cleanup old facts before starting installer
|
2021-02-23 17:35:28 +00:00 |
|
|
|
b2de68ebac
|
Use weak ciphers for boot.foo.sh
iPXE doesn't support modern ciphers so use older ones.
|
2021-02-12 07:12:13 +00:00 |
|
|
|
353e7facf7
|
base: Mount /tmp using tmpfs on CentOS hosts
|
2021-02-12 06:48:21 +00:00 |
|
|
|
c9040a4529
|
sendmail: Initial version of module
|
2021-02-12 06:31:09 +00:00 |
|
|
|
01c3b23c9b
|
Open HTTP port from mail servers for cert validation
|
2021-02-12 06:28:44 +00:00 |
|
|
|
af061d0083
|
nginx/server: Validate certificate before installing
|
2021-02-12 06:26:25 +00:00 |
|
|
|
5f679fd659
|
Better handling for package group installs
|
2021-02-12 05:32:12 +00:00 |
|
|
|
d017446a0e
|
ldap/server: Index username (uid) attributes
|
2021-02-12 05:21:40 +00:00 |
|
|
|
612875ca44
|
syslogd: Restart server when new certs are deployed
|
2021-02-10 07:02:42 +00:00 |
|
|
|
0d693da604
|
mirror: Disable progress bar when downloading thinlinc packages
|
2021-02-08 06:40:22 +00:00 |
|
|
|
eaa0e25b41
|
zfs: Remove unused role
|
2020-12-13 16:08:39 +00:00 |
|
|
|
051e256c3b
|
Move nas hosts to use XFS instead of ZFS filesystem
|
2020-12-13 16:07:50 +00:00 |
|
|
|
c1198880bb
|
ldap/server: Include chain files to certificates tag
|
2020-12-08 08:02:32 +00:00 |
|
|
|
36cbc1dd48
|
syslogd: Fix log rotation command
|
2020-11-27 08:58:22 +00:00 |
|
|
|
5d10282cdb
|
autofs: Use mkdir instead of install command
|
2020-11-24 07:24:07 +00:00 |
|
|
|
0d083acbd4
|
Add kernel documentation and php client to shell hosts
|
2020-11-19 21:37:55 +00:00 |
|
|
|
d12b28a0a0
|
Remove pulseuadio bluetooth support from shell hosts
|
2020-11-19 21:37:28 +00:00 |
|
|
|
ea61b2f5f7
|
Use dynamic address for lan interface on shell hosts
|
2020-11-19 20:15:56 +00:00 |
|
|
|
aca3b191e6
|
nfs-client: Disable using raw uid/gid mapping
Fixes error:
kernel: NFS: v4 server nas02.home.foo.sh does not accept raw uid/gids. Reenabling the idmapper.
Hopefully also makes logins faster.
|
2020-11-19 18:16:34 +00:00 |
|
|
|
9dad43c226
|
Remove bluetooth support from shell hosts
No need for bluetooth in remote servers. This seems to drop login times
from 40s to 10s.
|
2020-11-18 07:48:43 +00:00 |
|
|
|
06883d5010
|
Add gnu grep utils to log hosts
|
2020-11-18 05:48:21 +00:00 |
|
|
|
0ba135be52
|
sssd: Disable unused services and enumeration
We are not using autofs or sudo via LDAP so disable them. Enumeration
doesn't seem to help getting all users via getent so disable it.
|
2020-11-17 18:15:23 +00:00 |
|
|
|
f035101cce
|
Add log and shell to global playbook
|
2020-11-17 17:29:32 +00:00 |
|
|
|
74b58f9313
|
sssd: Enable sssd as authentication backend
|
2020-11-17 16:50:49 +00:00 |
|
|
|
067007c307
|
Fix warnings from log playbook
|
2020-11-17 16:50:15 +00:00 |
|
|
|
90e32a1e33
|
Move loghost to vmhost02 and add datadisk
|
2020-11-17 16:49:57 +00:00 |
|
|
|
0d40ff3e92
|
nfs-client: Allow gssproxy to connect krb5 over https
|
2020-11-17 16:49:21 +00:00 |
|
