|
Packit |
8cb997 |
---
|
|
Packit |
8cb997 |
- name: Test host allow_retrieve_keytab
|
|
Packit |
8cb997 |
hosts: ipaserver
|
|
Packit |
8cb997 |
become: true
|
|
Packit |
8cb997 |
|
|
Packit |
8cb997 |
tasks:
|
|
Packit |
8cb997 |
- name: Get Domain from server name
|
|
Packit |
8cb997 |
set_fact:
|
|
Packit |
8cb997 |
ipaserver_domain: "{{ groups.ipaserver[0].split('.')[1:] | join ('.') }}"
|
|
Packit |
8cb997 |
when: ipaserver_domain is not defined
|
|
Packit |
8cb997 |
|
|
Packit |
8cb997 |
- name: Get Realm from server name
|
|
Packit |
8cb997 |
set_fact:
|
|
Packit |
8cb997 |
ipaserver_realm: "{{ groups.ipaserver[0].split('.')[1:] | join ('.') | upper }}"
|
|
Packit |
8cb997 |
when: ipaserver_realm is not defined
|
|
Packit |
8cb997 |
|
|
Packit |
8cb997 |
- name: Set host1_fqdn .. host3_fqdn
|
|
Packit |
8cb997 |
set_fact:
|
|
Packit |
8cb997 |
host1_fqdn: "{{ 'host1.' + ipaserver_domain }}"
|
|
Packit |
8cb997 |
host2_fqdn: "{{ 'host2.' + ipaserver_domain }}"
|
|
Packit |
8cb997 |
host3_fqdn: "{{ 'host3.' + ipaserver_domain }}"
|
|
Packit |
8cb997 |
|
|
Packit |
8cb997 |
- name: Host host1..., host2... and host3... absent
|
|
Packit |
8cb997 |
ipahost:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit |
8cb997 |
name:
|
|
Packit |
8cb997 |
- "{{ host1_fqdn }}"
|
|
Packit |
8cb997 |
- "{{ host2_fqdn }}"
|
|
Packit |
8cb997 |
- "{{ host3_fqdn }}"
|
|
Packit |
8cb997 |
state: absent
|
|
Packit |
8cb997 |
|
|
Packit |
8cb997 |
- name: Ensure host-groups hostgroup1 and hostgroup2 absent
|
|
Packit |
8cb997 |
ipahostgroup:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit |
8cb997 |
name: hostgroup1,hostgroup2
|
|
Packit |
8cb997 |
state: absent
|
|
Packit |
8cb997 |
|
|
Packit |
8cb997 |
- name: Ensure users user1 and user2 absent
|
|
Packit |
8cb997 |
ipauser:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit |
8cb997 |
users:
|
|
Packit |
8cb997 |
- name: user1
|
|
Packit |
8cb997 |
- name: user2
|
|
Packit |
8cb997 |
state: absent
|
|
Packit |
8cb997 |
|
|
Packit |
8cb997 |
- name: Ensure group1 and group2 absent
|
|
Packit |
8cb997 |
ipagroup:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit |
8cb997 |
name: group1,group2
|
|
Packit |
8cb997 |
state: absent
|
|
Packit |
8cb997 |
|
|
Packit |
8cb997 |
- name: Host host2... and host3... present
|
|
Packit |
8cb997 |
ipahost:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit |
8cb997 |
hosts:
|
|
Packit |
8cb997 |
- name: "{{ host2_fqdn }}"
|
|
Packit |
8cb997 |
force: yes
|
|
Packit |
8cb997 |
- name: "{{ host3_fqdn }}"
|
|
Packit |
8cb997 |
force: yes
|
|
Packit |
8cb997 |
register: result
|
|
Packit |
8cb997 |
failed_when: not result.changed
|
|
Packit |
8cb997 |
|
|
Packit |
8cb997 |
- name: Ensure host-group hostgroup1 present
|
|
Packit |
8cb997 |
ipahostgroup:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit |
8cb997 |
name: hostgroup1
|
|
Packit |
8cb997 |
state: present
|
|
Packit |
8cb997 |
register: result
|
|
Packit |
8cb997 |
failed_when: not result.changed
|
|
Packit |
8cb997 |
|
|
Packit |
8cb997 |
- name: Ensure host-group hostgroup2 present
|
|
Packit |
8cb997 |
ipahostgroup:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit |
8cb997 |
name: hostgroup2
|
|
Packit |
8cb997 |
state: present
|
|
Packit |
8cb997 |
register: result
|
|
Packit |
8cb997 |
failed_when: not result.changed
|
|
Packit |
8cb997 |
|
|
Packit |
8cb997 |
- name: Ensure users user1 and user2 present
|
|
Packit |
8cb997 |
ipauser:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit |
8cb997 |
users:
|
|
Packit |
8cb997 |
- name: user1
|
|
Packit |
8cb997 |
first: First1
|
|
Packit |
8cb997 |
last: Last1
|
|
Packit |
8cb997 |
- name: user2
|
|
Packit |
8cb997 |
first: First2
|
|
Packit |
8cb997 |
last: Last2
|
|
Packit |
8cb997 |
register: result
|
|
Packit |
8cb997 |
failed_when: not result.changed
|
|
Packit |
8cb997 |
|
|
Packit |
8cb997 |
- name: Ensure group1 present
|
|
Packit |
8cb997 |
ipagroup:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit |
8cb997 |
name: group1
|
|
Packit |
8cb997 |
register: result
|
|
Packit |
8cb997 |
failed_when: not result.changed
|
|
Packit |
8cb997 |
|
|
Packit |
8cb997 |
- name: Ensure group2 present
|
|
Packit |
8cb997 |
ipagroup:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit |
8cb997 |
name: group2
|
|
Packit |
8cb997 |
register: result
|
|
Packit |
8cb997 |
failed_when: not result.changed
|
|
Packit |
8cb997 |
|
|
Packit |
8cb997 |
- name: Host host1... present with allow_retrieve_keytab users,groups,hosts and hostgroups
|
|
Packit |
8cb997 |
ipahost:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit |
8cb997 |
name: "{{ host1_fqdn }}"
|
|
Packit |
8cb997 |
allow_retrieve_keytab_user:
|
|
Packit |
8cb997 |
- user1
|
|
Packit |
8cb997 |
- user2
|
|
Packit |
8cb997 |
allow_retrieve_keytab_group:
|
|
Packit |
8cb997 |
- group1
|
|
Packit |
8cb997 |
- group2
|
|
Packit |
8cb997 |
allow_retrieve_keytab_host:
|
|
Packit |
8cb997 |
- "{{ host2_fqdn }}"
|
|
Packit |
8cb997 |
- "{{ host3_fqdn }}"
|
|
Packit |
8cb997 |
allow_retrieve_keytab_hostgroup:
|
|
Packit |
8cb997 |
- hostgroup1
|
|
Packit |
8cb997 |
- hostgroup2
|
|
Packit |
8cb997 |
force: yes
|
|
Packit |
8cb997 |
register: result
|
|
Packit |
8cb997 |
failed_when: not result.changed
|
|
Packit |
8cb997 |
|
|
Packit |
8cb997 |
- name: Host host1... present with allow_retrieve_keytab users,groups,hosts and hostgroups again
|
|
Packit |
8cb997 |
ipahost:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit |
8cb997 |
name: "{{ host1_fqdn }}"
|
|
Packit |
8cb997 |
allow_retrieve_keytab_user:
|
|
Packit |
8cb997 |
- user1
|
|
Packit |
8cb997 |
- user2
|
|
Packit |
8cb997 |
allow_retrieve_keytab_group:
|
|
Packit |
8cb997 |
- group1
|
|
Packit |
8cb997 |
- group2
|
|
Packit |
8cb997 |
allow_retrieve_keytab_host:
|
|
Packit |
8cb997 |
- "{{ host2_fqdn }}"
|
|
Packit |
8cb997 |
- "{{ host3_fqdn }}"
|
|
Packit |
8cb997 |
allow_retrieve_keytab_hostgroup:
|
|
Packit |
8cb997 |
- hostgroup1
|
|
Packit |
8cb997 |
- hostgroup2
|
|
Packit |
8cb997 |
force: yes
|
|
Packit |
8cb997 |
register: result
|
|
Packit |
8cb997 |
failed_when: result.changed
|
|
Packit |
8cb997 |
|
|
Packit |
8cb997 |
- name: Host host1... absent
|
|
Packit |
8cb997 |
ipahost:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit |
8cb997 |
name:
|
|
Packit |
8cb997 |
- "{{ host1_fqdn }}"
|
|
Packit |
8cb997 |
state: absent
|
|
Packit |
8cb997 |
|
|
Packit |
8cb997 |
- name: Host host1... present
|
|
Packit |
8cb997 |
ipahost:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit |
8cb997 |
name: "{{ host1_fqdn }}"
|
|
Packit |
8cb997 |
force: yes
|
|
Packit |
8cb997 |
register: result
|
|
Packit |
8cb997 |
failed_when: not result.changed
|
|
Packit |
8cb997 |
|
|
Packit |
8cb997 |
- name: Host host1... ensure allow_retrieve_keytab users,groups,hosts and hostgroups present
|
|
Packit |
8cb997 |
ipahost:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit |
8cb997 |
name: "{{ host1_fqdn }}"
|
|
Packit |
8cb997 |
allow_retrieve_keytab_user:
|
|
Packit |
8cb997 |
- user1
|
|
Packit |
8cb997 |
- user2
|
|
Packit |
8cb997 |
allow_retrieve_keytab_group:
|
|
Packit |
8cb997 |
- group1
|
|
Packit |
8cb997 |
- group2
|
|
Packit |
8cb997 |
allow_retrieve_keytab_host:
|
|
Packit |
8cb997 |
- "{{ host2_fqdn }}"
|
|
Packit |
8cb997 |
- "{{ host3_fqdn }}"
|
|
Packit |
8cb997 |
allow_retrieve_keytab_hostgroup:
|
|
Packit |
8cb997 |
- hostgroup1
|
|
Packit |
8cb997 |
- hostgroup2
|
|
Packit |
8cb997 |
action: member
|
|
Packit |
8cb997 |
register: result
|
|
Packit |
8cb997 |
failed_when: not result.changed
|
|
Packit |
8cb997 |
|
|
Packit |
8cb997 |
- name: Host host1... ensure allow_retrieve_keytab users,groups,hosts and hostgroups present again
|
|
Packit |
8cb997 |
ipahost:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit |
8cb997 |
name: "{{ host1_fqdn }}"
|
|
Packit |
8cb997 |
allow_retrieve_keytab_user:
|
|
Packit |
8cb997 |
- user1
|
|
Packit |
8cb997 |
- user2
|
|
Packit |
8cb997 |
allow_retrieve_keytab_group:
|
|
Packit |
8cb997 |
- group1
|
|
Packit |
8cb997 |
- group2
|
|
Packit |
8cb997 |
allow_retrieve_keytab_host:
|
|
Packit |
8cb997 |
- "{{ host2_fqdn }}"
|
|
Packit |
8cb997 |
- "{{ host3_fqdn }}"
|
|
Packit |
8cb997 |
allow_retrieve_keytab_hostgroup:
|
|
Packit |
8cb997 |
- hostgroup1
|
|
Packit |
8cb997 |
- hostgroup2
|
|
Packit |
8cb997 |
action: member
|
|
Packit |
8cb997 |
register: result
|
|
Packit |
8cb997 |
failed_when: result.changed
|
|
Packit |
8cb997 |
|
|
Packit |
8cb997 |
- name: Host host1... ensure allow_retrieve_keytab users,groups,hosts and hostgroups absent
|
|
Packit |
8cb997 |
ipahost:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit |
8cb997 |
name: "{{ host1_fqdn }}"
|
|
Packit |
8cb997 |
allow_retrieve_keytab_user:
|
|
Packit |
8cb997 |
- user1
|
|
Packit |
8cb997 |
- user2
|
|
Packit |
8cb997 |
allow_retrieve_keytab_group:
|
|
Packit |
8cb997 |
- group1
|
|
Packit |
8cb997 |
- group2
|
|
Packit |
8cb997 |
allow_retrieve_keytab_host:
|
|
Packit |
8cb997 |
- "{{ host2_fqdn }}"
|
|
Packit |
8cb997 |
- "{{ host3_fqdn }}"
|
|
Packit |
8cb997 |
allow_retrieve_keytab_hostgroup:
|
|
Packit |
8cb997 |
- hostgroup1
|
|
Packit |
8cb997 |
- hostgroup2
|
|
Packit |
8cb997 |
action: member
|
|
Packit |
8cb997 |
state: absent
|
|
Packit |
8cb997 |
register: result
|
|
Packit |
8cb997 |
failed_when: not result.changed
|
|
Packit |
8cb997 |
|
|
Packit |
8cb997 |
- name: Host host1... ensure allow_retrieve_keytab users,groups,hosts and hostgroups absent again
|
|
Packit |
8cb997 |
ipahost:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit |
8cb997 |
name: "{{ host1_fqdn }}"
|
|
Packit |
8cb997 |
allow_retrieve_keytab_user:
|
|
Packit |
8cb997 |
- user1
|
|
Packit |
8cb997 |
- user2
|
|
Packit |
8cb997 |
allow_retrieve_keytab_group:
|
|
Packit |
8cb997 |
- group1
|
|
Packit |
8cb997 |
- group2
|
|
Packit |
8cb997 |
allow_retrieve_keytab_host:
|
|
Packit |
8cb997 |
- "{{ host2_fqdn }}"
|
|
Packit |
8cb997 |
- "{{ host3_fqdn }}"
|
|
Packit |
8cb997 |
allow_retrieve_keytab_hostgroup:
|
|
Packit |
8cb997 |
- hostgroup1
|
|
Packit |
8cb997 |
- hostgroup2
|
|
Packit |
8cb997 |
action: member
|
|
Packit |
8cb997 |
state: absent
|
|
Packit |
8cb997 |
register: result
|
|
Packit |
8cb997 |
failed_when: result.changed
|
|
Packit |
8cb997 |
|
|
Packit |
8cb997 |
- name: Host host1..., host2... and host3... absent
|
|
Packit |
8cb997 |
ipahost:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit |
8cb997 |
name:
|
|
Packit |
8cb997 |
- "{{ host1_fqdn }}"
|
|
Packit |
8cb997 |
- "{{ host2_fqdn }}"
|
|
Packit |
8cb997 |
- "{{ host3_fqdn }}"
|
|
Packit |
8cb997 |
state: absent
|
|
Packit |
8cb997 |
register: result
|
|
Packit |
8cb997 |
failed_when: not result.changed
|
|
Packit |
8cb997 |
|
|
Packit |
8cb997 |
- name: Ensure host-groups hostgroup1 and hostgroup2 absent
|
|
Packit |
8cb997 |
ipahostgroup:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit |
8cb997 |
name: hostgroup1,hostgroup2
|
|
Packit |
8cb997 |
state: absent
|
|
Packit |
8cb997 |
register: result
|
|
Packit |
8cb997 |
failed_when: not result.changed
|
|
Packit |
8cb997 |
|
|
Packit |
8cb997 |
- name: Ensure users user1 and user2 absent
|
|
Packit |
8cb997 |
ipauser:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit |
8cb997 |
users:
|
|
Packit |
8cb997 |
- name: user1
|
|
Packit |
8cb997 |
- name: user2
|
|
Packit |
8cb997 |
state: absent
|
|
Packit |
8cb997 |
register: result
|
|
Packit |
8cb997 |
failed_when: not result.changed
|
|
Packit |
8cb997 |
|
|
Packit |
8cb997 |
- name: Ensure group1 and group2 absent
|
|
Packit |
8cb997 |
ipagroup:
|
|
Packit Service |
0f71a7 |
ipaadmin_password: SomeADMINpassword
|
|
Packit |
8cb997 |
name: group1,group2
|
|
Packit |
8cb997 |
state: absent
|
|
Packit |
8cb997 |
register: result
|
|
Packit |
8cb997 |
failed_when: not result.changed
|