/[pdpsoft]/trunk/egi-pilot/master-portal/ansible/basic-env.yml
ViewVC logotype

Contents of /trunk/egi-pilot/master-portal/ansible/basic-env.yml

Parent Directory Parent Directory | Revision Log Revision Log


Revision 2913 - (show annotations) (download) (as text)
Fri Mar 18 17:40:10 2016 UTC (6 years, 6 months ago) by tamasb
File MIME type: text/x-yaml
File size: 1818 byte(s)
imporved basic_env and ip6tables

1 ---
2 - hosts: masterportal
3 remote_user: root
4 vars:
5 - igtfkey: "https://dl.igtf.net/distribution/igtf/current-new/GPG-KEY-EUGridPMA-RPM-3"
6 - igtf_current_baseurl: "http://dist.eugridpma.info/distribution/igtf/current-new/"
7 - general_packages:
8 - libselinux-python
9 - net-tools
10 - bind-utils
11 - postfix
12 - mailx
13 - sysstat
14 - ntp
15 - nscd
16 - epel-release
17 - enabled_services:
18 - ntpd
19 - iptables
20 - ip6tables
21 - disabled_services:
22 - NetworkManager
23 - wpa_supplicant
24 tasks:
25
26 - name: yum update machine
27 yum:
28 name: '*'
29 state: latest
30
31 - name: install general packages
32 yum:
33 name: "{{ item }}"
34 state: present
35 with_items: "{{ general_packages }}"
36
37
38 # You might need to disable SELinux. The setup has not been tested with it yet.
39 # - selinux: state=disabled
40
41 # Install IGTF trust anchors
42
43 - name: adding IGTF GPG key
44 rpm_key:
45 key: "{{ igtfkey }}"
46 state: present
47
48 - name: adding IGTF repositories (current-new)
49 yumrepo:
50 name: eugridpma
51 description: EUGridPMA
52 baseurl: "{{ igtf_current_baseurl }}"
53 file: eugridpma
54 gpgcheck: yes
55 enabled: yes
56 gpgkey: "{{ igtfkey }}"
57
58 - name: install trust roots
59 yum:
60 name: "{{ item }}"
61 update_cache: yes
62 state: present
63 with_items:
64 - ca_TERENA-eScience-SSL-CA-3.noarch
65 # - ca_policy_igtf-classic
66 # - ca_policy_igtf-mics
67
68 # list of enabled services
69
70 - name: enable services
71 service: name={{ item }} state=started enabled=yes
72 with_items: "{{ enabled_services }}"
73
74 # list of disabled services
75
76 - name: disable services
77 service: name={{ item }} state=stopped enabled=no
78 with_items: "{{ disabled_services }}"

grid.support@nikhef.nl
ViewVC Help
Powered by ViewVC 1.1.28