The sudocmd module allows to ensure presence and absence of sudo command.
The sudocmd module is as compatible as possible to the Ansible upstream ipa_sudocmd
module.
FreeIPA versions 4.4.0 and up are supported by the ipa_sudocmd module.
Controller * Ansible version: 2.8+
Node * Supported FreeIPA version (see above)
Example inventory file
[ipaserver] ipaserver.test.local
Example playbook to make sure sudocmd exists:
--- - name: Playbook to handle sudocmd hosts: ipaserver become: true tasks: # Ensure sudocmd is present - ipasudocmd: ipaadmin_password: SomeADMINpassword name: /usr/bin/su state: present
Example playbook to make sure sudocmd is absent:
--- - name: Playbook to handle sudocmd hosts: ipaserver become: true tasks: # Ensure sudocmd are absent - ipahostgroup: ipaadmin_password: SomeADMINpassword name: /usr/bin/su state: absent
Variable | Description | Required |
---|---|---|
ipaadmin_principal |
The admin principal is a string and defaults to admin |
no |
ipaadmin_password |
The admin password is a string and is required if there is no admin ticket available on the node | no |
name | sudocmd |
The sudo command strings. | yes |
description |
The command description string. | no |
nomembers |
Suppress processing of membership attributes. (bool) | no |
state |
The state to ensure. It can be one of present or absent , default: present . |
no |
Rafael Guterres Jeffman