jaydee/ansible
1
0
Fork 0
mirror of https://gitlab.sectorq.eu/jaydee/ansible.git synced 2025-01-23 12:38:11 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

bitwarden

Browse Source
This commit is contained in:
jaydee 2024-11-29 01:37:55 +01:00
parent fd1da535fa
commit f4a17b16df
3 changed files with 9 additions and 9 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

14
playbooks/00_install_ldap_client.yml
View File

@ -1,7 +1,7 @@
- hosts: datacenter - hosts: datacenter
name: Install omv name: Install omv
become: true become: true
gather_facts: no gather_facts: false
tasks: tasks:
- name: Install ldap packages - name: Install ldap packages
ansible.builtin.apt: ansible.builtin.apt:
@ -66,7 +66,7 @@
ansible.builtin.lineinfile: ansible.builtin.lineinfile:
path: /etc/nslcd.conf path: /etc/nslcd.conf
regexp: "^uri ldap.*" regexp: "^uri ldap.*"
line: "uri ldap://192.168.77.106:389/" line: "uri ldap://192.168.77.101:2389/"
- name: Reconfigure ldap base - name: Reconfigure ldap base
@ -79,13 +79,13 @@
- name: Reconfigure nslcd binddn - name: Reconfigure nslcd binddn
ansible.builtin.lineinfile: ansible.builtin.lineinfile:
path: /etc/nslcd.conf path: /etc/nslcd.conf
regexp: "^#binddn" regexp: "^binddn"
line: "binddn cn=admin,dc=sectorq,dc=eu" line: "binddn cn=jaydee,dc=users,dc=sectorq,dc=eu"
- name: Reconfigure nslcd bindpw - name: Reconfigure nslcd bindpw
ansible.builtin.lineinfile: ansible.builtin.lineinfile:
path: /etc/nslcd.conf path: /etc/nslcd.conf
regexp: "^#bindpw" regexp: "^bindpw"
line: "bindpw {{ ldap_admin_password }}" line: "bindpw {{ ldap_admin_password }}"
# - name: Reconfigure ldap base # - name: Reconfigure ldap base
# ansible.builtin.lineinfile: # ansible.builtin.lineinfile:
@ -95,7 +95,7 @@
- name: Reconfigure nslcd tls_reqcert - name: Reconfigure nslcd tls_reqcert
ansible.builtin.lineinfile: ansible.builtin.lineinfile:
path: /etc/nslcd.conf path: /etc/nslcd.conf
regexp: "^#tls_reqcert" regexp: "^tls_reqcert"
line: "tls_reqcert allow" line: "tls_reqcert allow"
- name: Restart nslcd service - name: Restart nslcd service
ansible.builtin.service: ansible.builtin.service:
@ -137,7 +137,7 @@
# This file should be world readable but not world writable. # This file should be world readable but not world writable.
BASE dc=sectorq,dc=eu BASE dc=sectorq,dc=eu
URI ldap://192.168.77.106:389 URI ldap://192.168.77.101:2389
#SIZELIMIT 12 #SIZELIMIT 12
#TIMELIMIT 15 #TIMELIMIT 15

2
playbooks/install_mqtt_srv.yml
View File

@ -1,4 +1,4 @@
- hosts: mqtt_srv - hosts: datacenter
name: Install mqtt_srv name: Install mqtt_srv
ignore_unreachable: false ignore_unreachable: false
ignore_errors: true ignore_errors: true

2
roles/monitoring/tasks/main.yml
View File

@ -72,7 +72,7 @@
path: "{{ zabbix_agent_cfg }}" path: "{{ zabbix_agent_cfg }}"
regexp: "^Server=.*" regexp: "^Server=.*"
insertafter: '^# Server=' insertafter: '^# Server='
line: "Server=192.168.77.0/24" line: "Server=192.168.77.0/24,192.168.80.0/24"
become: "{{ false if inventory_hostname == 'nas.home.lan' else true }}" become: "{{ false if inventory_hostname == 'nas.home.lan' else true }}"
- name: Reconfigure zabbix agent ServerActive - name: Reconfigure zabbix agent ServerActive