/[pdpsoft]/trunk/egi-pilot/robotCA/DS/ansible/roles/cafrontend/tasks/access.yml
ViewVC logotype

Contents of /trunk/egi-pilot/robotCA/DS/ansible/roles/cafrontend/tasks/access.yml

Parent Directory Parent Directory | Revision Log Revision Log


Revision 2926 - (show annotations) (download) (as text)
Wed Mar 23 11:33:28 2016 UTC (6 years, 4 months ago) by msalle
File MIME type: text/x-yaml
File size: 746 byte(s)
Split access task into access and iptables tasks.

1 ---
2
3 # Configure access to machine with authconfig
4
5 - name: add access.conf file
6 template:
7 src: access.conf.j2
8 dest: "/etc/security/access.conf"
9 owner: "root"
10 group: "root"
11 mode: 0644
12 register: pamaccess_config
13
14 - name: execute authconfig
15 command: "/usr/sbin/authconfig --kickstart --disablemd5 --passalgo=sha512 --enableshadow --enablecache --enablepamaccess --enablelocauthorize --disablesssd --disablesssdauth --disableldaptls --disableldap --disableldapauth --enablerfc2307 "
16 when: pamaccess_config.changed
17
18 - name: fix authconfig bug (sets PATH_LDAP_CACERTS to the wrong in /usr/share/authconfig/authinfo.py)
19 file:
20 src: /etc/openldap/certs
21 dest: /etc/openldap/cacerts
22 owner: root
23 state: link
24

grid.support@nikhef.nl
ViewVC Help
Powered by ViewVC 1.1.28