ldap_attr -> ldap_attrs (community.general renamed it)
This commit is contained in:
Denis Knauf
parent
f78013f6ea
commit
115b625aa5
|
|
@ -9,7 +9,7 @@
|
||||||
- python-ldap
|
- python-ldap
|
||||||
|
|
||||||
- name: fix acl
|
- name: fix acl
|
||||||
ldap_attr:
|
ldap_attrs:
|
||||||
name: olcAccess
|
name: olcAccess
|
||||||
dn: olcDatabase={1}mdb,cn=config
|
dn: olcDatabase={1}mdb,cn=config
|
||||||
state: exact
|
state: exact
|
||||||
|
|
@ -27,7 +27,7 @@
|
||||||
by dn.exact=gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth write
|
by dn.exact=gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth write
|
||||||
by * read
|
by * read
|
||||||
- name: set crypto
|
- name: set crypto
|
||||||
ldap_attr:
|
ldap_attrs:
|
||||||
dn: cn=config
|
dn: cn=config
|
||||||
name: "{{item.key}}"
|
name: "{{item.key}}"
|
||||||
state: exact
|
state: exact
|
||||||
|
|
@ -37,7 +37,7 @@
|
||||||
olcPasswordCryptSaltFormat: "$6$rounds=8000$%.16s"
|
olcPasswordCryptSaltFormat: "$6$rounds=8000$%.16s"
|
||||||
|
|
||||||
- name: set base DN
|
- name: set base DN
|
||||||
ldap_attr:
|
ldap_attrs:
|
||||||
dn: 'olcDatabase={{"{"+(ldap_database_index|default(1)|string)+"}"}}mdb,cn=config'
|
dn: 'olcDatabase={{"{"+(ldap_database_index|default(1)|string)+"}"}}mdb,cn=config'
|
||||||
name: "{{item.key}}"
|
name: "{{item.key}}"
|
||||||
state: exact
|
state: exact
|
||||||
|
|
@ -62,7 +62,6 @@
|
||||||
set_fact:
|
set_fact:
|
||||||
root_password: '{{lookup("password", "/dev/null chars=ascii_letters,digits,hexdigits length=20")}}'
|
root_password: '{{lookup("password", "/dev/null chars=ascii_letters,digits,hexdigits length=20")}}'
|
||||||
- debug: var=root_passwort
|
- debug: var=root_passwort
|
||||||
- debug: var=root_passwort
|
|
||||||
- name: add base DN
|
- name: add base DN
|
||||||
become: yes
|
become: yes
|
||||||
become_user: openldap
|
become_user: openldap
|
||||||
|
|
@ -73,8 +72,8 @@
|
||||||
objectClass: top
|
objectClass: top
|
||||||
objectClass: dcObject
|
objectClass: dcObject
|
||||||
objectClass: organization
|
objectClass: organization
|
||||||
dc: {{ldap_basedn | regex_replace('^[^=]+=([^,]+).*', '\1')}}
|
dc: {{ldap_basedn | regex_replace( '^[^=]+=([^,]+).*', '\1')}}
|
||||||
o: {{ldap_basedn | regex_replace('^[^=]+=([^,]+).*', '\1')}}
|
o: {{ldap_basedn | regex_replace( '^[^=]+=([^,]+).*', '\1')}}
|
||||||
|
|
||||||
dn: ou=People,{{ldap_basedn}}
|
dn: ou=People,{{ldap_basedn}}
|
||||||
objectClass: top
|
objectClass: top
|
||||||
|
|
@ -94,7 +93,7 @@
|
||||||
structuralObjectClass: organizationalRole
|
structuralObjectClass: organizationalRole
|
||||||
cn: root
|
cn: root
|
||||||
description: LDAP administrator
|
description: LDAP administrator
|
||||||
userPassword: highsecure
|
userPassword: {{root_password}}
|
||||||
|
|
||||||
# - name: update in ldap.conf
|
# - name: update in ldap.conf
|
||||||
# lineinfile:
|
# lineinfile:
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue