imntreal.epic_odb

Panoramica Versioni Approfondimenti

Ansible Role: Epic ODB

Build Status

This Ansible role sets up RHEL servers to be used as Epic ODB servers.

Requirements

To use this role with RHEL 8+ or Ubuntu, you need to install the epic-config package beforehand, or have it available in a repository that is already set up on the servers.

Role Variables

You can find the default variables in defaults/main.yml (these can be changed in the inventory):

  • useepicatservice: This determines if [email protected] should be used instead of epic.service to start the instances on the server.

Additional variables can be found in vars/main.yml:

  • epic_users: This is a list of local Epic accounts that will be created on each ODB server.

Variables that are set only in the inventory include:

  • odb_instances: A list of instances on the server.
  • epic_environments: A list of Epic environments along with their instances.
  • nr_hugepages: The number of hugepages to allocate.
  • firewalld_services: Definitions for the firewalld services that will be created.
  • epic_passwords: Password hashes for local accounts. For RHEL 7, you can generate these using: openssl passwd -6 with OpenSSL version 1.1 or higher, or examples can be found here: Password Hashing Example.
  • forced_epicusers: Users who should be added to the epicuser group.
  • epicuser_groups: Groups of users that should be added to the epicuser group.

Dependencies

No other roles are needed.

Example Playbook

Inventory:

---
odb:
  epic-prd:
    odb_instances:
      - 'prd'
    
    epic_environments:
      - Instance: 'PRD'
        Environment: 'PRD'

    nr_hugepages: 112763

    # These passwords should be securely stored
    epic_passwords:
      epicadm: $6$CAuJvjioZaK6OfAI$hcU2HIzJG2e8ZaqcUATQ0UzFZPcFrOlUnLC7OV13Ect0A.KKVUC1lRK4KfF26u3r8iZClZOlREwhj4w5kQaVY/
      epicdmn: $6$W6CPWrIRuKp4VxDK$imCJgLaHLcvXXPx9EbPEalmIe5kBE9H6UbOuisfuuU4vwuFot9n7e7YQUUHnC41QkP3a4JUUtUVkWcsTtLynC1
      epicsupt: $6$htfX4OnvYGmVTii.$0G81Mp6svyullK3JPwXvBaSbCvh1FOVZnBVYzMWgk14AiSxtjYUWER4de2w989zX7K1zEPebdTYROhoPqui311
      epictxt: $6$Xi.mHrTLDgFNPq8X$SbLerE4LBeCGNoCvTkksYl6DyPuKcaS4ZT.Tlg9ZWQItmBQup5I5XY60GpareUyX8Cg0EnIYfpSfz3G.dCHU11
      iscagent: $6$Z8Q4GIqVUkSx71Ig$DqzrkYG5F3.lpnBBptsVX0grwistyWJOo7JfHS5tgqGbBH9uVAJSSi8i5eMQARcLHvt7x335MzE.Ln9SVAKY30

    forced_epicusers:
      - some_ad_user

    epicuser_groups:
      - some_ad_group

    odb_firewall_services:
      - name: epiccomm
        description: EpicComm
        ports:
          - port: 6050
      - name: licensing
        description: Epic Licensing Server
        ports:
          - port: 4001
            protocol: 'udp'
      - name: procedure-logs
        description: Epic Procedure Logs
        ports:
          - port: 11913
      - name: redalert
        description: Epic Red Alert Monitoring Agent
        ports:
          - port: 10443
      - name: isc-mirroring
        description: Cache' ISC Agent Mirroring
        ports:
          - port: 2188
      - name: superserver
        description: Cache' Superserver
        ports:
          - port: 1950
      - name: webserver
        description: Cache' Webserver
        ports:
          - port: 4950
      - name: bridges
        description: Epic Bridges
        ports:
          - port: 1751
          - port: 3101
      - name: datacourier
        description: Epic Datacourier
        ports:
          - port: 65000
          - port: 65111

Playbook:

- hosts: odb
  roles: epic_odb

License

MIT

Author Information

Jameson Pugh imntreal@gmail.com

Informazioni sul progetto

Epic ODB Server Role

role epic odb
Installa
ansible-galaxy install imntreal.epic_odb
GitHub repository
2 stelle
1 fork
0 problemi aperti
Licenza
mit
Download
97.2k
Proprietario