526a192018
ansible-host: Make sure that ssh-agent is running for root
2020-08-27 18:47:49 +00:00
8ecbc19c75
ansible-host: Remove some packages not related to ansible
2020-08-27 18:26:57 +00:00
602cc4dfc6
certbot: Add missing config file and lint fixes
2020-08-27 21:14:36 +03:00
b81950c5b2
ansible-host: Don't update local ansible repo
2020-08-27 21:13:31 +03:00
5e1f521eb6
certbot: Initial version of role
2020-08-27 20:50:57 +03:00
cb51dc186c
network: Fix default network_interfaces variable
2020-08-27 17:47:09 +00:00
c80eca3d85
New implementation of network interfaces
...
Combine interfaces and network_ether_interfaces into one common
variable network_interfaces. Provisioning uses format:
network_interfaces:
- device: device name eg. vio0 or eth0
vlan: vlan id for this interface
mac: mac address for interface (optional)
Additionally network role will use more settings to configure
interface.
2020-08-27 17:42:07 +00:00
ee03bd3cb7
ansible-host: More fixes to support out of box install
2020-08-27 14:43:19 +03:00
00bdcfb7de
selinux: Fix python package name for EL8
2020-08-27 14:35:31 +03:00
f14bb25ade
nginx/site: Add support for self signed certs
2020-08-27 13:45:19 +03:00
e672015a1f
nginx: Use alias for certbot host
2020-08-27 12:00:28 +03:00
ee23e2120b
ansible-host: Add missing virt-install
2020-08-26 23:46:18 +03:00
398bbf5a32
ansible-host: Install more tools
2020-08-26 23:40:52 +03:00
d09ad303dc
ansible-host: Fix private directory link
2020-08-26 23:31:20 +03:00
f05112b125
ansible-host: Initial version of role
2020-08-26 23:25:20 +03:00
858a7d30d7
epel-repo: Initial version of role
2020-08-26 23:11:51 +03:00
964b70f978
base: Add more base packages
2020-08-26 23:04:16 +03:00
74edead676
base: Remove all depencies to other than base packages
2020-08-26 22:54:47 +03:00
a1c96a5369
Support OpenSMTPd only on OpenBSD
2020-08-26 22:53:11 +03:00
c8f65fc7bd
Initial version of postfix role
2020-08-26 22:47:04 +03:00
f490804106
Disable rsa key from ssh host keys
2020-08-26 22:03:18 +03:00
b7e0ef18c5
Reorder installs to get selinux support earlier
...
Ansible cannot set file contexts unless selinux python bindings are installed.
2020-08-26 21:53:48 +03:00
08d1495026
syslogd: lint fixes
2020-02-28 00:09:17 +02:00
302427c85f
selinux: update module to support centos 8
2020-02-28 00:07:10 +02:00
3dbb65302e
base: fix warning of cron job hour value (should be string)
2020-02-27 14:12:09 +02:00
08466f3143
base: remove rcs from default installs
2020-02-27 14:08:12 +02:00
1fcc2dd407
add remote logging support to rsyslog
2019-07-19 18:04:53 +03:00
6085718f5d
enable remote logging for syslogd
2019-07-19 17:55:54 +03:00
d11300df60
add syslog support for proxies
2019-07-19 17:55:22 +03:00
7088bc9b14
add server support for syslogd
2019-07-19 17:16:59 +03:00
9b3bfe9bc8
nginx: use mozilla recommended ssl options
2019-07-05 10:20:25 +03:00
6cd29b72a7
nginx: enable http2 protocol
2019-07-05 10:20:00 +03:00
84db430875
add foo.sh layout to cups web interface
2019-06-14 11:20:51 +03:00
a496da62b0
add more cups configuration
2019-06-14 11:09:23 +03:00
5afff575c5
change cups authentication to use kerberos
2019-06-14 10:12:07 +03:00
8920d79078
selinux file context fixes for nginx data directories
2019-06-11 15:53:55 +03:00
5016b70292
make sure that selinux contexts are correct in ldap data directory
2019-06-11 15:52:53 +03:00
020a10677b
add ldap/nss to cups/server dependency to get group access correct
2019-06-10 21:06:00 +03:00
9fc02e7bef
add role ldap/nss
2019-06-10 21:05:08 +03:00
998dc0b643
install htop on all hosts
2019-06-10 19:24:15 +03:00
3129b5e58c
first version of cups server role
2019-06-10 19:23:36 +03:00
6541059276
set sasl-host to get kerberos tickets match hostname
2019-06-08 17:28:58 +03:00
d599adcd95
enable ldap slave
2019-06-08 17:24:42 +03:00
8335a9723e
copy keytab instead of generating it
2019-06-08 17:23:51 +03:00
b13fbe1c2a
add support for ldap replication
2019-06-06 22:11:10 +03:00
b6b3dbbca3
more authz regexp base dn's for gssapi authentication
2019-06-06 02:30:56 +03:00
da6ed9d4ac
force sasl to use external (certificates) when connecting ldap as root
2019-06-06 02:29:59 +03:00
1a22ce543b
lint fixes
2019-06-06 02:04:51 +03:00
d512c8b8bd
add gssapi auth support for ldap server
2019-06-06 01:58:04 +03:00
9cd3910f42
rename keytab to be more logical
2019-06-06 01:56:52 +03:00
