57 lines
1.4 KiB
YAML
57 lines
1.4 KiB
YAML
---
|
|
- name: Deploy KVM virtual machines
|
|
ansible.builtin.import_playbook: include/deploy-kvm-guest.yml
|
|
vars:
|
|
myhosts: nas
|
|
|
|
- name: Configure instance
|
|
hosts: nas
|
|
user: root
|
|
gather_facts: true
|
|
|
|
vars_files:
|
|
- "{{ ansible_private }}/vars.yml"
|
|
|
|
pre_tasks:
|
|
- name: Mount /export/home
|
|
ansible.posix.mount:
|
|
name: /export/home
|
|
src: LABEL=home
|
|
fstype: xfs
|
|
opts: noatime
|
|
passno: "0"
|
|
dump: "0"
|
|
state: mounted
|
|
- name: Mount /export/roles
|
|
ansible.posix.mount:
|
|
name: /export/roles
|
|
src: LABEL=roles
|
|
fstype: xfs
|
|
opts: noatime
|
|
passno: "0"
|
|
dump: "0"
|
|
state: mounted
|
|
|
|
roles:
|
|
- base
|
|
- kerberos
|
|
- sssd
|
|
- nfs_server
|
|
- role: keytab
|
|
principals: "nfs/{{ inventory_hostname }}@FOO.SH"
|
|
|
|
tasks:
|
|
- name: Copy exports file
|
|
ansible.builtin.copy:
|
|
dest: /etc/exports
|
|
content: |
|
|
/export/home 172.20.30.0/24(rw,root_squash,secure,sec=krb5p) \
|
|
@nfsclients-rw(rw,root_squash,secure) \
|
|
@nfsclients-ro(ro,root_squash,secure)
|
|
/export/roles 172.20.30.0/24(rw,root_squash,secure,sec=krb5p) \
|
|
@nfsclients-rw(rw,root_squash,secure) \
|
|
@nfsclients-ro(ro,root_squash,secure)
|
|
mode: 0644
|
|
owner: root
|
|
group: "{{ ansible_wheel }}"
|
|
notify: Restart nfs-server
|