29 lines
681 B
YAML
29 lines
681 B
YAML
---
|
|
- name: install packages
|
|
package:
|
|
name: mod_auth_gssapi
|
|
state: installed
|
|
notify: restart apache
|
|
|
|
- name: allow httpd to connect network
|
|
seboolean:
|
|
name: httpd_can_network_connect
|
|
state: true
|
|
persistent: true
|
|
|
|
- name: create httpd service drop-in directory
|
|
file:
|
|
path: /etc/systemd/system/httpd.service.d
|
|
state: directory
|
|
mode: 0755
|
|
owner: root
|
|
group: "{{ ansible_wheel }}"
|
|
|
|
- name: set keytab path
|
|
copy:
|
|
dest: /etc/systemd/system/httpd.service.d/keytab.conf
|
|
content: "[Service]\nEnvironment=KRB5_KTNAME=/etc/httpd/httpd.keytab\n"
|
|
mode: 0644
|
|
owner: root
|
|
group: "{{ ansible_wheel }}"
|
|
notify: restart apache
|