Skip to content
/ ansible_tower_genie_kerberos Public

An Ansible role to configure Ansible Tower nodes to manage Windows systems.

License

MIT license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

redhat-ansible-practice/ansible_tower_genie_kerberos

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

4 Commits
defaults
defaults
 
 
meta
meta
 
 
tasks
tasks
 
 
templates
templates
 
 
vars
vars
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

ansible_tower_genie_kerberos

Description

An Ansible role to configure Ansible Tower nodes to manage Windows systems.

Variables

Name Required Default Value Type Description
krb_realms yes N/A List of Dictionaries Used for storing the realm(domain) name and its domain controllers. A single domain controller can be specified if that is the only available option, but more than one is preferable. See example usage below.
krb_default_realm no undefined string If a default realm(domain) is required to be specified this can be set. Otherwise it remains unset in the krb5.conf.
krb_dns_lookup_realm yes "false" string Whether or not to lookup DNS via realm.
krb_ticket_lifetime yes "24h" string Sets the default lifetime for initial ticket requests.
krb_renew_lifetime yes "7d" string Kerberos renewable ticket lifetime.
krb_forwardable yes "true" string Forwardable kerberos tickets.
krb_rdns yes "false" string Whether or not to use rdns.

Example use of krb_realms

Note that the first listed item in each listed realm's dc_fqdns list will be set as the realm's admin_server.

krb_realms:
  - name: "MYDOMAIN.COM"
    dc_fqdns:
      - "foo1.bar.mydomain.com"
      - "foo2.bar.mydomain.com"
  - name: "YOURDOMAIN.COM"
    dc_fqdns:
      - "ad1.yourdomain.com"
      - "ad2.yourdomain.com"

Tags

If you would like to skip the check of EPEL and python-pip installation, you can skip the tag prerequisites with --skip-tags prerequisites option at run-time.

HTTP/HTTPS Proxy Settings

If you require a proxy server to reach external repositories located on the internet, ensure that you have set them either on the server running the playbook, or in the playbook including the role.

Example Playbook

---
- hosts: towers
# If you need proxy settings to install packages from the internet:
# The following 3 lines are optional
  environment:
    http_proxy: "yourproxyurl:andport"
    https_proxy: "yourproxyurl:andport"
  roles:
    - role: ahuffman.ansible-tower-kerberos
      krb_realms:
        - name: "MYDOMAIN.COM"
          dc_fqdns:
            - "foo1.bar.mydomain.com"
            - "foo2.bar.mydomain.com"
        - name: "YOURDOMAIN.COM"
          dc_fqdns:
            - "ad1.yourdomain.com"
            - "ad2.yourdomain.com"

License

MIT

Author

Andrew J. Huffman

About

An Ansible role to configure Ansible Tower nodes to manage Windows systems.

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

0 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases 1

Version 1.0.0 Latest
Feb 18, 2019

Packages

No packages published