foo.sh/ansible
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
361 commits 2 branches 0 tags 1.8 MiB
Commit graph

27 commits

Author SHA1 Message Date
Timo Makinen
f543d599af Tag all certificate and key copying 2020-09-28 15:17:26 +00:00
Timo Makinen
8ef85fc318 ldap/nss: Add netgroup support 2020-09-20 21:33:06 +00:00
Timo Makinen
da549daaaa ldap/server: Add ACL support for netgroups 2020-09-11 14:45:11 +00:00
Timo Makinen
dde5a9f61d ldap/client: Fix auth mech for root 2020-09-09 15:49:41 +00:00
Timo Makinen
5016b70292 make sure that selinux contexts are correct in ldap data directory 2019-06-11 15:52:53 +03:00
Timo Makinen
9fc02e7bef add role ldap/nss 2019-06-10 21:05:08 +03:00
Timo Makinen
6541059276 set sasl-host to get kerberos tickets match hostname 2019-06-08 17:28:58 +03:00
Timo Makinen
8335a9723e copy keytab instead of generating it 2019-06-08 17:23:51 +03:00
Timo Makinen
b13fbe1c2a add support for ldap replication 2019-06-06 22:11:10 +03:00
Timo Makinen
b6b3dbbca3 more authz regexp base dn's for gssapi authentication 2019-06-06 02:30:56 +03:00
Timo Makinen
da6ed9d4ac force sasl to use external (certificates) when connecting ldap as root 2019-06-06 02:29:59 +03:00
Timo Makinen
1a22ce543b lint fixes 2019-06-06 02:04:51 +03:00
Timo Makinen
d512c8b8bd add gssapi auth support for ldap server 2019-06-06 01:58:04 +03:00
Timo Makinen
9cd3910f42 rename keytab to be more logical 2019-06-06 01:56:52 +03:00
Timo Makinen
11e4a82a35 configure authz mappings for gssapi authenticated users 2019-06-06 01:54:54 +03:00
Timo Makinen
911332ec6f add daily ldap database dumps to ldap master 2019-05-31 19:11:32 +03:00
Timo Makinen
80b017b5d1 write ldap datadirectory handling more cleanly 2019-05-31 18:56:24 +03:00
Timo Makinen
0163a5f932 don't use /export for ldap data directory on slaves 2019-05-31 18:34:39 +03:00
Timo Makinen
6c917dc696 add acl's for kadmin user 2019-05-31 02:31:58 +03:00
Timo Makinen
fbffa25346 install and configure ldapvi on ldap servers 2019-05-31 02:30:53 +03:00
Timo Makinen
4ba69d7632 add ldap indexes for kerberos kdc 2019-05-29 19:38:25 +03:00
Timo Makinen
40abdfca64 change ldap base dn entries to use variables 2019-05-29 01:59:00 +03:00
Timo Makinen
53cacdcb2e log ldap queries to syslog 2019-05-29 01:57:41 +03:00
Timo Makinen
e0b519cf21 use global variable for default certificate bundle location 2019-05-28 21:22:14 +03:00
Timo Makinen
1a4aec1b66 use variables for server settings and move from self signed cert to real ones 2019-05-28 21:16:47 +03:00
Timo Makinen
89aa8eb0ef first version of ldap server role 2019-05-28 20:34:07 +03:00
Timo Makinen
a69e66bbac initial version of ldap client 2019-05-27 21:10:50 +03:00