Skip to content

ssm/ssm.icinga2

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

94 Commits
defaults
defaults
 
 
handlers
handlers
 
 
meta
meta
 
 
molecule
molecule
 
 
tasks
tasks
 
 
templates
templates
 
 
vars
vars
 
 
.gitignore
.gitignore
 
 
.travis.yml
.travis.yml
 
 
.yamllint
.yamllint
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
tox.ini
tox.ini
 
 

Repository files navigation

ssm.icinga2

Install and configure Icinga 2 master and satellites.

Requirements

This role requires you to configure repositories for icinga2, icingaweb2 and their dependencies. For CentOS/RHEL version 7 this means EPEL and Software Collections.

You should configure a database server, web server, as well as a php server (PHP FPM). The icingaweb2 package will use this.

TODO: Write requirements documentation.

Role Variables

  • icinga2_manage_repo: When this is set to a true value, the role will install and configure the repository and signing key for the icinga packages.

  • icinga2_key_url: The URL for the icinga repo signing key. Used only if icinga2_manage_repo is set to a true value.

  • icinga2_repo_url: The URL for the icinga repo. Used only if icinga2_manage_repo is set to a true value.

TODO: Write documentation. In the meantime, see defaults/main.yml

Inventory

For each host, a set of variables determines its role and location in the icinga2 cluster architecture.

TODO: Refactor inconsistent variable names and use.

Inventory variables

  • icinga2_role: The role of this host. "standalone", "master" or "satellite". Default is "standalone".

    If the role is "standalone", no cluster PKI actions will be performed.

    If the role is "master", a cluster PKI CA will be initialized.

    If the role is "satellite", a PKI CSR will be generated on this host, and submitted to the host indicated by the "icinga2_parent_host" variable.

    The "satellite" role requires another host in the same play having the "master" role already configured, as well as properly configured icinga2_parent_host and icinga2_parent_zone variables.

  • icinga2_zone: The zone name for this host. Default is the value of inventory_hostname

  • icinga2_master_host: The master host for issuing CA tickets.

  • icinga2_parent_host: The parent host for CSR signing.

  • icinga2_parent_zone: The parent zone (for --parent_host, or for --endpoint?)

  • icinga2_endpoint: A list of parent endpoints to connect to for configuration and checks (string, array)

  • icinga2_ido_database: The database name used for the IDO database. Default is "icinga".

  • icinga2_ido_host: The hostname used when connecting the the IDO database. Default is "localhost".

  • icinga2_ido_username: The username for authenticating to the IDO database. Default is "icinga".

  • icinga2_ido_password: The password for authenticating to the IDO database. Default is "icinga"

    Please change this password as soon as practically possible.

Example Playbook

Order the hosts in the inventory so the master is provisioned first. The satellites and the clients need the master to be operational.

- hosts:
    - master
    - satellites
  roles:
     - role: ssm.icinga2

License

GPLv3

About

Ansible role ssm.icinga2

Resources

Readme

License

GPL-3.0 license
Activity

Stars

0 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages