|
Packit Service |
0f71a7 |
---
|
|
Packit Service |
0f71a7 |
- name: Playbook to handle server configuration
|
|
Packit Service |
0f71a7 |
hosts: ipaserver
|
|
Packit Service |
0f71a7 |
become: true
|
|
Packit Service |
0f71a7 |
gather_facts: false
|
|
Packit Service |
0f71a7 |
|
|
Packit Service |
0f71a7 |
tasks:
|
|
Packit Service |
0f71a7 |
# Retrieve current configuration.
|
|
Packit Service |
0f71a7 |
- name: return current values of the global configuration options
|
|
Packit Service |
0f71a7 |
ipaconfig:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0f71a7 |
register: previousconfig
|
|
Packit Service |
0f71a7 |
|
|
Packit Service |
0f71a7 |
- debug:
|
|
Packit Service |
0f71a7 |
msg: "{{previousconfig}}"
|
|
Packit Service |
0f71a7 |
|
|
Packit Service |
0f71a7 |
# setup environment.
|
|
Packit Service |
0f71a7 |
- name: create test group
|
|
Packit Service |
0f71a7 |
ipagroup:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: 'SomeADMINpassword'
|
|
Packit Service |
0f71a7 |
name: somedefaultgroup
|
|
Packit Service |
0f71a7 |
|
|
Packit Service |
0f71a7 |
- name: Ensure the default e-mail domain is ipa.test.
|
|
Packit Service |
0f71a7 |
ipaconfig:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0f71a7 |
emaildomain: ipa.test
|
|
Packit Service |
0f71a7 |
|
|
Packit Service |
0f71a7 |
- name: set default shell to '/bin/sh'
|
|
Packit Service |
0f71a7 |
ipaconfig:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0f71a7 |
defaultshell: /bin/sh
|
|
Packit Service |
0f71a7 |
|
|
Packit Service |
0f71a7 |
- name: set default group
|
|
Packit Service |
0f71a7 |
ipaconfig:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0f71a7 |
defaultgroup: ipausers
|
|
Packit Service |
0f71a7 |
|
|
Packit Service |
0f71a7 |
- name: set default home directory
|
|
Packit Service |
0f71a7 |
ipaconfig:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0f71a7 |
homedirectory: /home
|
|
Packit Service |
0f71a7 |
|
|
Packit Service |
0f71a7 |
- name: clear pac-type
|
|
Packit Service |
0f71a7 |
ipaconfig:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0f71a7 |
pac_type: ""
|
|
Packit Service |
0f71a7 |
|
|
Packit Service |
0f71a7 |
- name: set maxusername to 255
|
|
Packit Service |
0f71a7 |
ipaconfig:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0f71a7 |
maxusername: 255
|
|
Packit Service |
0f71a7 |
|
|
Packit Service |
0f71a7 |
- name: set maxhostname to 255
|
|
Packit Service |
0f71a7 |
ipaconfig:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0f71a7 |
maxhostname: 255
|
|
Packit Service |
0f71a7 |
|
|
Packit Service |
0f71a7 |
- name: set pwdexpnotify to 0
|
|
Packit Service |
0f71a7 |
ipaconfig:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0f71a7 |
pwdexpnotify: 0
|
|
Packit Service |
0f71a7 |
|
|
Packit Service |
0f71a7 |
- name: set searchrecordslimit to 10
|
|
Packit Service |
0f71a7 |
ipaconfig:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0f71a7 |
searchrecordslimit: 10
|
|
Packit Service |
0f71a7 |
|
|
Packit Service |
0f71a7 |
- name: set searchtimelimit to 1
|
|
Packit Service |
0f71a7 |
ipaconfig:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0f71a7 |
searchtimelimit: 1
|
|
Packit Service |
0f71a7 |
|
|
Packit Service |
0f71a7 |
- name: clear configstring
|
|
Packit Service |
0f71a7 |
ipaconfig:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0f71a7 |
configstring: ""
|
|
Packit Service |
0f71a7 |
|
|
Packit Service |
0f71a7 |
- name: set configstring to AllowNThash
|
|
Packit Service |
0f71a7 |
ipaconfig:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0f71a7 |
configstring: 'KDC:Disable Lockout'
|
|
Packit Service |
0f71a7 |
|
|
Packit Service |
0f71a7 |
- name: set selinuxusermapdefault
|
|
Packit Service |
0f71a7 |
ipaconfig:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0f71a7 |
selinuxusermapdefault: "staff_u:s0-s0:c0.c1023"
|
|
Packit Service |
0f71a7 |
|
|
Packit Service |
0f71a7 |
- name: set selinuxusermaporder
|
|
Packit Service |
0f71a7 |
ipaconfig:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0f71a7 |
selinuxusermaporder: 'user_u:s0$staff_u:s0-s0:c0.c1023'
|
|
Packit Service |
0f71a7 |
|
|
Packit Service |
0f71a7 |
- name: set usersearch to `uid`
|
|
Packit Service |
0f71a7 |
ipaconfig:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0f71a7 |
usersearch: uid
|
|
Packit Service |
0f71a7 |
|
|
Packit Service |
0f71a7 |
- name: set groupsearch to `cn`
|
|
Packit Service |
0f71a7 |
ipaconfig:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0f71a7 |
groupsearch: cn
|
|
Packit Service |
0f71a7 |
|
|
Packit Service |
0f71a7 |
# tests
|
|
Packit Service |
0f71a7 |
- name: Ensure the default e-mail domain is somedomain.test.
|
|
Packit Service |
0f71a7 |
ipaconfig:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0f71a7 |
emaildomain: somedomain.test
|
|
Packit Service |
0f71a7 |
register: result
|
|
Packit Service |
0f71a7 |
failed_when: not result.changed
|
|
Packit Service |
0f71a7 |
|
|
Packit Service |
0f71a7 |
- name: Ensure the default e-mail domain is somedomain.test, again.
|
|
Packit Service |
0f71a7 |
ipaconfig:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0f71a7 |
emaildomain: somedomain.test
|
|
Packit Service |
0f71a7 |
register: result
|
|
Packit Service |
0f71a7 |
failed_when: result.changed
|
|
Packit Service |
0f71a7 |
|
|
Packit Service |
0f71a7 |
- name: set default shell to '/bin/someshell'
|
|
Packit Service |
0f71a7 |
ipaconfig:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0f71a7 |
defaultshell: /bin/someshell
|
|
Packit Service |
0f71a7 |
register: result
|
|
Packit Service |
0f71a7 |
failed_when: not result.changed
|
|
Packit Service |
0f71a7 |
|
|
Packit Service |
0f71a7 |
- name: set default shell to '/bin/someshell', again.
|
|
Packit Service |
0f71a7 |
ipaconfig:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0f71a7 |
defaultshell: /bin/someshell
|
|
Packit Service |
0f71a7 |
register: result
|
|
Packit Service |
0f71a7 |
failed_when: result.changed
|
|
Packit Service |
0f71a7 |
|
|
Packit Service |
0f71a7 |
- name: set default group
|
|
Packit Service |
0f71a7 |
ipaconfig:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0f71a7 |
defaultgroup: somedefaultgroup
|
|
Packit Service |
0f71a7 |
register: result
|
|
Packit Service |
0f71a7 |
failed_when: not result.changed
|
|
Packit Service |
0f71a7 |
|
|
Packit Service |
0f71a7 |
- name: set default group
|
|
Packit Service |
0f71a7 |
ipaconfig:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0f71a7 |
defaultgroup: somedefaultgroup
|
|
Packit Service |
0f71a7 |
register: result
|
|
Packit Service |
0f71a7 |
failed_when: result.changed
|
|
Packit Service |
0f71a7 |
|
|
Packit Service |
0f71a7 |
- name: set default home directory
|
|
Packit Service |
0f71a7 |
ipaconfig:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0f71a7 |
homedirectory: /Users
|
|
Packit Service |
0f71a7 |
register: result
|
|
Packit Service |
0f71a7 |
failed_when: not result.changed
|
|
Packit Service |
0f71a7 |
|
|
Packit Service |
0f71a7 |
- name: set default home directory
|
|
Packit Service |
0f71a7 |
ipaconfig:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0f71a7 |
homedirectory: /Users
|
|
Packit Service |
0f71a7 |
register: result
|
|
Packit Service |
0f71a7 |
failed_when: result.changed
|
|
Packit Service |
0f71a7 |
|
|
Packit Service |
0f71a7 |
- name: set pac-type
|
|
Packit Service |
0f71a7 |
ipaconfig:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0f71a7 |
pac_type: "nfs:NONE"
|
|
Packit Service |
0f71a7 |
register: result
|
|
Packit Service |
0f71a7 |
failed_when: not result.changed
|
|
Packit Service |
0f71a7 |
|
|
Packit Service |
0f71a7 |
- name: set pac-type, again.
|
|
Packit Service |
0f71a7 |
ipaconfig:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0f71a7 |
pac_type: "nfs:NONE"
|
|
Packit Service |
0f71a7 |
register: result
|
|
Packit Service |
0f71a7 |
failed_when: result.changed
|
|
Packit Service |
0f71a7 |
|
|
Packit Service |
0f71a7 |
- name: set maxusername to 33
|
|
Packit Service |
0f71a7 |
ipaconfig:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0f71a7 |
maxusername: 33
|
|
Packit Service |
0f71a7 |
register: result
|
|
Packit Service |
0f71a7 |
failed_when: not result.changed
|
|
Packit Service |
0f71a7 |
|
|
Packit Service |
0f71a7 |
- name: set maxusername to 33, again.
|
|
Packit Service |
0f71a7 |
ipaconfig:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0f71a7 |
maxusername: 33
|
|
Packit Service |
0f71a7 |
register: result
|
|
Packit Service |
0f71a7 |
failed_when: result.changed
|
|
Packit Service |
0f71a7 |
|
|
Packit Service |
0f71a7 |
- name: set maxhostname to 77
|
|
Packit Service |
0f71a7 |
ipaconfig:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0f71a7 |
maxhostname: 77
|
|
Packit Service |
0f71a7 |
register: result
|
|
Packit Service |
0f71a7 |
failed_when: not result.changed
|
|
Packit Service |
0f71a7 |
|
|
Packit Service |
0f71a7 |
- name: set maxhostname to 77, again
|
|
Packit Service |
0f71a7 |
ipaconfig:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0f71a7 |
maxhostname: 77
|
|
Packit Service |
0f71a7 |
register: result
|
|
Packit Service |
0f71a7 |
failed_when: result.changed
|
|
Packit Service |
0f71a7 |
|
|
Packit Service |
0f71a7 |
- name: set pwdexpnotify to 17
|
|
Packit Service |
0f71a7 |
ipaconfig:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0f71a7 |
pwdexpnotify: 17
|
|
Packit Service |
0f71a7 |
register: result
|
|
Packit Service |
0f71a7 |
failed_when: not result.changed
|
|
Packit Service |
0f71a7 |
|
|
Packit Service |
0f71a7 |
- name: set pwdexpnotify to 17, again
|
|
Packit Service |
0f71a7 |
ipaconfig:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0f71a7 |
pwdexpnotify: 17
|
|
Packit Service |
0f71a7 |
register: result
|
|
Packit Service |
0f71a7 |
failed_when: result.changed
|
|
Packit Service |
0f71a7 |
|
|
Packit Service |
0f71a7 |
- name: set searchrecordslimit to -1
|
|
Packit Service |
0f71a7 |
ipaconfig:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0f71a7 |
searchrecordslimit: -1
|
|
Packit Service |
0f71a7 |
register: result
|
|
Packit Service |
0f71a7 |
failed_when: not result.changed
|
|
Packit Service |
0f71a7 |
|
|
Packit Service |
0f71a7 |
- name: set searchrecordslimit to -1, again.
|
|
Packit Service |
0f71a7 |
ipaconfig:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0f71a7 |
searchrecordslimit: -1
|
|
Packit Service |
0f71a7 |
register: result
|
|
Packit Service |
0f71a7 |
failed_when: result.changed
|
|
Packit Service |
0f71a7 |
|
|
Packit Service |
0f71a7 |
- name: set searchtimelimit to 12345
|
|
Packit Service |
0f71a7 |
ipaconfig:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0f71a7 |
searchtimelimit: 12345
|
|
Packit Service |
0f71a7 |
register: result
|
|
Packit Service |
0f71a7 |
failed_when: not result.changed
|
|
Packit Service |
0f71a7 |
|
|
Packit Service |
0f71a7 |
- name: set searchtimelimit to 12345, again.
|
|
Packit Service |
0f71a7 |
ipaconfig:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0f71a7 |
searchtimelimit: 12345
|
|
Packit Service |
0f71a7 |
register: result
|
|
Packit Service |
0f71a7 |
failed_when: result.changed
|
|
Packit Service |
0f71a7 |
|
|
Packit Service |
0f71a7 |
- name: change enable_migration
|
|
Packit Service |
0f71a7 |
ipaconfig:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0f71a7 |
enable_migration: '{{ not previousconfig.config.enable_migration }}'
|
|
Packit Service |
0f71a7 |
register: result
|
|
Packit Service |
0f71a7 |
failed_when: not result.changed
|
|
Packit Service |
0f71a7 |
|
|
Packit Service |
0f71a7 |
- name: change enable_migration, again
|
|
Packit Service |
0f71a7 |
ipaconfig:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0f71a7 |
enable_migration: '{{ not previousconfig.config.enable_migration }}'
|
|
Packit Service |
0f71a7 |
register: result
|
|
Packit Service |
0f71a7 |
failed_when: result.changed
|
|
Packit Service |
0f71a7 |
|
|
Packit Service |
0f71a7 |
- name: set configstring to AllowNThash
|
|
Packit Service |
0f71a7 |
ipaconfig:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0f71a7 |
configstring: AllowNThash
|
|
Packit Service |
0f71a7 |
register: result
|
|
Packit Service |
0f71a7 |
failed_when: not result.changed
|
|
Packit Service |
0f71a7 |
|
|
Packit Service |
0f71a7 |
- name: set configstring to AllowNThash, again.
|
|
Packit Service |
0f71a7 |
ipaconfig:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0f71a7 |
configstring: AllowNThash
|
|
Packit Service |
0f71a7 |
register: result
|
|
Packit Service |
0f71a7 |
failed_when: result.changed
|
|
Packit Service |
0f71a7 |
|
|
Packit Service |
0f71a7 |
- name: set selinuxusermaporder
|
|
Packit Service |
0f71a7 |
ipaconfig:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0f71a7 |
selinuxusermaporder: 'user_u:s0$staff_u:s0-s0:c0.c1023$sysadm_u:s0-s0:c0.c1023$unconfined_u:s0-s0:c0.c1023'
|
|
Packit Service |
0f71a7 |
register: result
|
|
Packit Service |
0f71a7 |
failed_when: not result.changed
|
|
Packit Service |
0f71a7 |
|
|
Packit Service |
0f71a7 |
- name: set selinuxusermaporder, again
|
|
Packit Service |
0f71a7 |
ipaconfig:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0f71a7 |
selinuxusermaporder: 'user_u:s0$staff_u:s0-s0:c0.c1023$sysadm_u:s0-s0:c0.c1023$unconfined_u:s0-s0:c0.c1023'
|
|
Packit Service |
0f71a7 |
register: result
|
|
Packit Service |
0f71a7 |
failed_when: result.changed
|
|
Packit Service |
0f71a7 |
|
|
Packit Service |
0f71a7 |
- name: set selinuxusermapdefault
|
|
Packit Service |
0f71a7 |
ipaconfig:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0f71a7 |
selinuxusermapdefault: 'user_u:s0'
|
|
Packit Service |
0f71a7 |
register: result
|
|
Packit Service |
0f71a7 |
failed_when: not result.changed
|
|
Packit Service |
0f71a7 |
|
|
Packit Service |
0f71a7 |
- name: set selinuxusermapdefault, again
|
|
Packit Service |
0f71a7 |
ipaconfig:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0f71a7 |
selinuxusermapdefault: 'user_u:s0'
|
|
Packit Service |
0f71a7 |
register: result
|
|
Packit Service |
0f71a7 |
failed_when: result.changed
|
|
Packit Service |
0f71a7 |
|
|
Packit Service |
0f71a7 |
- name: set groupsearch to `description`
|
|
Packit Service |
0f71a7 |
ipaconfig:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0f71a7 |
groupsearch: description
|
|
Packit Service |
0f71a7 |
register: result
|
|
Packit Service |
0f71a7 |
failed_when: not result.changed
|
|
Packit Service |
0f71a7 |
|
|
Packit Service |
0f71a7 |
- name: set groupsearch to `gidNumber`, again
|
|
Packit Service |
0f71a7 |
ipaconfig:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0f71a7 |
groupsearch: description
|
|
Packit Service |
0f71a7 |
register: result
|
|
Packit Service |
0f71a7 |
failed_when: result.changed
|
|
Packit Service |
0f71a7 |
|
|
Packit Service |
0f71a7 |
- name: set usersearch to `uidNumber`
|
|
Packit Service |
0f71a7 |
ipaconfig:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0f71a7 |
usersearch: uidNumber
|
|
Packit Service |
0f71a7 |
register: result
|
|
Packit Service |
0f71a7 |
failed_when: not result.changed
|
|
Packit Service |
0f71a7 |
|
|
Packit Service |
0f71a7 |
- name: set usersearch to `uidNumber`, again
|
|
Packit Service |
0f71a7 |
ipaconfig:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0f71a7 |
usersearch: uidNumber
|
|
Packit Service |
0f71a7 |
register: result
|
|
Packit Service |
0f71a7 |
failed_when: result.changed
|
|
Packit Service |
0f71a7 |
|
|
Packit Service |
0f71a7 |
- name: reset changed fields
|
|
Packit Service |
0f71a7 |
ipaconfig:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: 'SomeADMINpassword'
|
|
Packit Service |
0f71a7 |
maxusername: '{{previousconfig.config.maxusername | default(omit)}}'
|
|
Packit Service |
0f71a7 |
maxhostname: '{{previousconfig.config.maxhostname | default(omit)}}'
|
|
Packit Service |
0f71a7 |
homedirectory: '{{previousconfig.config.homedirectory | default(omit)}}'
|
|
Packit Service |
0f71a7 |
defaultshell: '{{previousconfig.config.defaultshell | default(omit)}}'
|
|
Packit Service |
0f71a7 |
defaultgroup: '{{previousconfig.config.defaultgroup | default(omit)}}'
|
|
Packit Service |
0f71a7 |
emaildomain: '{{previousconfig.config.emaildomain | default(omit)}}'
|
|
Packit Service |
0f71a7 |
searchtimelimit: '{{previousconfig.config.searchtimelimit | default(omit)}}'
|
|
Packit Service |
0f71a7 |
searchrecordslimit: '{{previousconfig.config.searchrecordslimit | default(omit)}}'
|
|
Packit Service |
0f71a7 |
usersearch: '{{previousconfig.config.usersearch | default(omit)}}'
|
|
Packit Service |
0f71a7 |
groupsearch: '{{previousconfig.config.groupsearch | default(omit)}}'
|
|
Packit Service |
0f71a7 |
enable_migration: '{{previousconfig.config.enable_migration | default(omit)}}'
|
|
Packit Service |
0f71a7 |
groupobjectclasses: '{{previousconfig.config.groupobjectclasses | default(omit)}}'
|
|
Packit Service |
0f71a7 |
userobjectclasses: '{{previousconfig.config.userobjectclasses | default(omit)}}'
|
|
Packit Service |
0f71a7 |
pwdexpnotify: '{{previousconfig.config.pwdexpnotify | default(omit)}}'
|
|
Packit Service |
0f71a7 |
configstring: '{{previousconfig.config.configstring | default(omit)}}'
|
|
Packit Service |
0f71a7 |
selinuxusermapdefault: '{{previousconfig.config.selinuxusermapdefault | default(omit)}}'
|
|
Packit Service |
0f71a7 |
selinuxusermaporder: '{{previousconfig.config.selinuxusermaporder | default(omit)}}'
|
|
Packit Service |
0f71a7 |
pac_type: '{{previousconfig.config.pac_type | default(omit)}}'
|
|
Packit Service |
0f71a7 |
user_auth_type: '{{previousconfig.config.user_auth_type | default(omit)}}'
|
|
Packit Service |
0f71a7 |
domain_resolution_order: '{{previousconfig.config.domain_resolution_order | default(omit)}}'
|
|
Packit Service |
0f71a7 |
ca_renewal_master_server: '{{previousconfig.config.ca_renewal_master_server | default(omit)}}'
|
|
Packit Service |
0f71a7 |
register: result
|
|
Packit Service |
0f71a7 |
failed_when: not result.changed
|
|
Packit Service |
0f71a7 |
|
|
Packit Service |
0f71a7 |
- name: reset changed fields, again
|
|
Packit Service |
0f71a7 |
ipaconfig:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: 'SomeADMINpassword'
|
|
Packit Service |
0f71a7 |
maxusername: '{{previousconfig.config.maxusername | default(omit)}}'
|
|
Packit Service |
0f71a7 |
maxhostname: '{{previousconfig.config.maxhostname | default(omit)}}'
|
|
Packit Service |
0f71a7 |
homedirectory: '{{previousconfig.config.homedirectory | default(omit)}}'
|
|
Packit Service |
0f71a7 |
defaultshell: '{{previousconfig.config.defaultshell | default(omit)}}'
|
|
Packit Service |
0f71a7 |
defaultgroup: '{{previousconfig.config.defaultgroup | default(omit)}}'
|
|
Packit Service |
0f71a7 |
emaildomain: '{{previousconfig.config.emaildomain | default(omit)}}'
|
|
Packit Service |
0f71a7 |
searchtimelimit: '{{previousconfig.config.searchtimelimit | default(omit)}}'
|
|
Packit Service |
0f71a7 |
searchrecordslimit: '{{previousconfig.config.searchrecordslimit | default(omit)}}'
|
|
Packit Service |
0f71a7 |
usersearch: '{{previousconfig.config.usersearch | default(omit)}}'
|
|
Packit Service |
0f71a7 |
groupsearch: '{{previousconfig.config.groupsearch | default(omit)}}'
|
|
Packit Service |
0f71a7 |
enable_migration: '{{previousconfig.config.enable_migration | default(omit)}}'
|
|
Packit Service |
0f71a7 |
groupobjectclasses: '{{previousconfig.config.groupobjectclasses | default(omit)}}'
|
|
Packit Service |
0f71a7 |
userobjectclasses: '{{previousconfig.config.userobjectclasses | default(omit)}}'
|
|
Packit Service |
0f71a7 |
pwdexpnotify: '{{previousconfig.config.pwdexpnotify | default(omit)}}'
|
|
Packit Service |
0f71a7 |
configstring: '{{previousconfig.config.configstring | default(omit)}}'
|
|
Packit Service |
0f71a7 |
selinuxusermapdefault: '{{previousconfig.config.selinuxusermapdefault | default(omit)}}'
|
|
Packit Service |
0f71a7 |
selinuxusermaporder: '{{previousconfig.config.selinuxusermaporder | default(omit)}}'
|
|
Packit Service |
0f71a7 |
pac_type: '{{previousconfig.config.pac_type | default(omit)}}'
|
|
Packit Service |
0f71a7 |
user_auth_type: '{{previousconfig.config.user_auth_type | default(omit)}}'
|
|
Packit Service |
0f71a7 |
domain_resolution_order: '{{previousconfig.config.domain_resolution_order | default(omit)}}'
|
|
Packit Service |
0f71a7 |
ca_renewal_master_server: '{{previousconfig.config.ca_renewal_master_server | default(omit)}}'
|
|
Packit Service |
0f71a7 |
register: result
|
|
Packit Service |
0f71a7 |
failed_when: result.changed
|
|
Packit Service |
0f71a7 |
|
|
Packit Service |
0f71a7 |
# cleanup
|
|
Packit Service |
0f71a7 |
|
|
Packit Service |
0f71a7 |
- name: cleanup test group
|
|
Packit Service |
0f71a7 |
ipagroup:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: 'SomeADMINpassword'
|
|
Packit Service |
0f71a7 |
name: somedefaultgroup
|
|
Packit Service |
0f71a7 |
state: absent
|