tmakinen/puppet
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Rmoved certificate check and added support for listing all users/groups in backend for ldap::auth on Fedora.

Browse source
This commit is contained in:
Timo Mkinen 2012-04-03 23:16:28 +03:00
parent f46b5fd1bd
commit f8f19bb9aa
1 changed files with 10 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

11
ldap/manifests/init.pp
View file

@ -97,9 +97,18 @@ class ldap::auth inherits ldap::client {
exec { "authconfig --enableldap --enableldapauth --ldapserver='${ldap_uri}' --ldapbasedn='${ldap_basedn}' --enablesssd --update": exec { "authconfig --enableldap --enableldapauth --ldapserver='${ldap_uri}' --ldapbasedn='${ldap_basedn}' --enablesssd --update":
path => "/bin:/usr/bin:/sbin:/usr/sbin", path => "/bin:/usr/bin:/sbin:/usr/sbin",
unless => 'cat /etc/sysconfig/authconfig | egrep "^USELDAPAUTH=yes$|^USELDAP=yes$" | wc -l | egrep "^2$"', unless => 'cat /etc/sysconfig/authconfig | egrep "^USELDAPAUTH=yes$|^USELDAP=yes$" | wc -l | egrep "^2$"',
before => Service["sssd"], before => Augeas["sssd-conf"],
require => [ Package["sssd"], Package["pam_ldap"], ], require => [ Package["sssd"], Package["pam_ldap"], ],
} }
augeas { "sssd-conf":
changes => [
"set target[1]/ldap_tls_reqcert never",
"set target[1]/enumerate true",
],
incl => "/etc/sssd/sssd.conf",
lens => "MySQL.lns",
before => Service["sssd"],
}
service { "sssd": service { "sssd":
ensure => running, ensure => running,
enable => true, enable => true,