source-git / ansible-freeipa

Clone
Source Code
GIT

Files

  1.   8cb997ec381282b8888e66c53a8504627fea72e2
  2.   tests
  3.   external-signed-ca-with-automatic-copy
  4.   install-server-with-external-ca-with-automatic-copy.yml
Blob Blame History Raw 
---
- name: Playbook to configure IPA server step1
  hosts: ipaserver
  become: true
  vars:
    ipaserver_external_ca: yes
    ipaserver_copy_csr_to_controller: yes

  roles:
  - role: ipaserver
    state: present

- name: Create CA, get /root/ipa.csr signed by your CA, ..
  hosts: localhost
  gather_facts: false

  tasks:
  - name: Run external-ca.sh
    command: >
      /bin/bash
      external-ca.sh
      "{{ groups.ipaserver[0] }}"
      "{{ ipaserver_domain | default(groups.ipaserver[0].split('.')[1:] | join ('.')) }}"
    args:
      chdir: "{{ playbook_dir }}"

- name: Playbook to configure IPA server step2
  hosts: ipaserver
  become: true
  vars:
    ipaserver_external_cert_files_from_controller: "{{ groups.ipaserver[0] + '-chain.crt' }}"
    #ipaserver_external_ca_file: "{{ groups.ipaserver[0] + '-cacert.asc' }}"

  roles:
  - role: ipaserver
    state: present

Powered by Pagure 5.13.3

SSH Hostkey/Fingerprint | Documentation