Skip to content
/ ldapclient Public

Ansible-Role to configure fedora/centos-systems to act as ldap-clients

License

MIT license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

schaten/ldapclient

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

26 Commits
defaults
defaults
 
 
handlers
handlers
 
 
meta
meta
 
 
tasks
tasks
 
 
templates
templates
 
 
vars
vars
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

conf.ldapclient

Ansible-Role to configure fedora/centos-systems to act as ldap-clients using sssd.

The role installs needed packages, templates sssd.conf, openldap/ldap.conf and nsswitch.conf, modifies pam.d/system-auth and pam.d/password-auth using ansibles built-in pamd-module and enables the services.

Variables:

  • ldap_server: list of ldap-servers to query
  • ldap_search_base: ldap_search_base
  • cert_dest: where to store the tls-certificate of the ldap-server
  • cert_src: where to get this certificate from

Example-Playbook

- name: ldap-client
  hosts: clients
  vars:
    ldap_server: [ "ldaps://ldap1.mydomain.com","ldaps://ldap3.mydomain.com"]
    ldap_search_base: "dc=mydomain,dc=com"
    cert_src: "files/ldap_all.cert"
    cert_dest: "/etc/openldap/all.cert"
  roles: [{ role: 'conf.ldapclient'}]

About

Ansible-Role to configure fedora/centos-systems to act as ldap-clients

Resources

Readme

License

MIT license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published