buluma.ad_auth
Ansible Role ad_auth
Connect a system to Active Directory.
| GitHub | Version | Issues | Pull Requests | Downloads |
|---|---|---|---|---|
 |
 |
 |
 |
 |
Example Playbook
Here is an example playbook from molecule/default/converge.yml, which is tested with every update.
---
- name: Converge
hosts: all
become: true
gather_facts: true
roles:
- role: buluma.ad_auth
ad_auth_registration_username: my_username
ad_auth_registration_password: my_password
ad_auth_ou: ou=Nerds,ou=Staff
ad_auth_server: my_server.example.com
ad_auth_domain: my_domain.local
ad_auth_join: false
ad_auth_simple_allow_users:
- my_user_1
- my_user_2
Your machine needs to be prepared first. In CI, this is done using molecule/default/prepare.yml:
---
- name: Prepare
hosts: all
become: true
gather_facts: false
vars:
python_pip_modules:
- name: pexpect
roles:
- role: buluma.bootstrap
- role: buluma.epel
- role: buluma.python_pip
For a complete explanation and more examples, visit this page.
Role Variables
Default values for the variables can be found in defaults/main.yml:
---
# defaults file for ad_auth
# The username to register to AD, for example: "bind_user".
ad_auth_registration_username: "unset"
# The password to register to AD.
ad_auth_registration_password: "unset"
# The OU to search in, for example: "ou=Nerds,ou=Staff".
ad_auth_ou: "unset"
# The server to bind to, for example: "ad.example.com".
ad_auth_server: "unset"
# The domain for SSSD configuration, for example: "example.com".
ad_auth_domain: "usnet.local"
# Should this role try to connect to the AD server?
ad_auth_join: true
# To limit login access, list the users allowed to log in:
# ad_auth_simple_allow_users:
# - my_user_1
# - my_user_2
Requirements
- Python packages listed in requirements.txt.
State of Used Roles
The roles listed below are used to prepare a system, but you can use another method.
| Requirement | GitHub | Version |
|---|---|---|
| buluma.bootstrap |  |
 |
| buluma.epel |  |
 |
| buluma.python_pip |  |
 |
Dependencies
Most roles require some preparation, managed in molecule/default/prepare.yml. This role heavily depends on the following roles:
- {'src': 'buluma.python_pip', 'version': '1.0.7', 'name': 'buluma.python_pip'}
Context
This role is part of several compatible roles. You can check the documentation of these roles for more information.
Here’s a chart of related roles:
Compatibility
This role has been tested with the following container images:
| Container | Tags |
|---|---|
| EL | all |
| Fedora | all |
The minimum version of Ansible needed is 2.12. Tests were conducted on:
- The previous version.
- The current version.
- The development version.
If you encounter any issues, please report them on GitHub.
Changelog
License
Author Information
Bind a system to Active Directory.
ansible-galaxy install buluma.ad_auth