Skip to content

Commit fcfb5df

Browse files
jimrightjimright
authored
Update FreeIPA client and server roles (#158)
* Add step to disable nm-cloud-setup during freeipa client install * Update freeipa.ansible_freeipa collection version * Change selinux module to use posix collection Signed-off-by: Jim Enright <jenright@cloudera.com>
1 parent 6efdef8 commit fcfb5df

File tree

4 files changed

+20
-4
lines changed

4 files changed

+20
-4
lines changed

README.md

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -117,7 +117,7 @@ See the [requirements for `cloudera-labs/cloudera.cluster`](https://github.com/w
117117
|------|------|---------|
118118
| `community.mysql` | collection | `3.1.0` |
119119
| `community.postgresql` | collection | `1.6.1` |
120-
| `freeipa.ansible_freeipa` | collection | `1.6.2` |
120+
| `freeipa.ansible_freeipa` | collection | `1.11.1` |
121121
| `geerlingguy.postgresql` | role | `2.2.0` |
122122
| `geerlingguy.mysql` (patched) | role | `master` |
123123

requirements.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -51,6 +51,6 @@ collections:
5151
- name: community.postgresql
5252
version: 1.6.1
5353
- name: freeipa.ansible_freeipa
54-
version: 1.6.2
54+
version: 1.11.1
5555
- name: cloud.terraform
5656
version: 1.11.0

roles/freeipa_client/tasks/main.yml

Lines changed: 17 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -15,7 +15,7 @@
1515
# limitations under the License.
1616

1717
- name: Disable SELinux
18-
ansible.builtin.selinux:
18+
ansible.posix.selinux:
1919
state: disabled
2020
notify: restart host
2121

@@ -59,6 +59,22 @@
5959
{{ ['nameserver '] | product(ipa_server_ips | sort) | map('join') | join('\n') }}
6060
notify: restart host
6161

62+
- name: Disable nm-cloud-setup if present
63+
ignore_errors: yes
64+
ansible.builtin.command: "{{ __nm_cloud_setup_disable_item }}"
65+
loop_control:
66+
loop_var: __nm_cloud_setup_disable_item
67+
loop:
68+
- systemctl disable nm-cloud-setup.service nm-cloud-setup.timer
69+
- systemctl stop nm-cloud-setup.service nm-cloud-setup.timer
70+
- ip rule del prio 30400
71+
- rm -rf /etc/systemd/system/nm-cloud-setup.service.d
72+
73+
- name: Ensure NetworkManager is running to maintain DHCP
74+
ansible.builtin.service:
75+
name: NetworkManager
76+
state: restarted
77+
6278
- name: Set /etc/hostname to the FQDN
6379
ansible.builtin.copy:
6480
content: "{{ inventory_hostname }}"

roles/freeipa_server/tasks/main.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -43,7 +43,7 @@
4343
loop_var: __pyver_item
4444

4545
- name: Disable SELinux
46-
ansible.builtin.selinux:
46+
ansible.posix.selinux:
4747
state: disabled
4848
notify: restart host
4949

0 commit comments

Comments
 (0)