robertdebock.ad_auth

Panoramica Versioni Approfondimenti

ad_auth

DEPRECATION WARNING: This project is no longer maintained. It only works on CentOS 7 and requires specific pip modules. Python 2 is no longer developed as of the end of 2020.

This tool helps connect a system to Active Directory.

GitHub GitLab Quality Downloads Version
github gitlab quality downloads Version

Example Playbook

The example below is taken from molecule/resources/converge.yml and is tested with each update and release.

---
- name: converge
  hosts: all
  become: yes
  gather_facts: yes

  roles:
    - role: robertdebock.ad_auth
      ad_auth_registration_username: my_username
      ad_auth_registration_password: my_password
      ad_auth_ou: ou=Nerds,ou=Staff
      ad_auth_server: my_server.example.com
      ad_auth_domain: my_domain.local
      ad_auth_join: no
      ad_auth_simple_allow_users:
        - my_user_1
        - my_user_2

For preparing the machine in CI, use molecule/resources/prepare.yml:

---
- name: prepare
  hosts: all
  become: yes
  gather_facts: no

  roles:
    - role: robertdebock.bootstrap
    - role: robertdebock.epel
    - role: robertdebock.python_pip

For more details, see the full explanation and example on how to use these roles.

Role Variables

These variables are defined in defaults/main.yml:

---
# defaults file for ad_auth

# The username to register with AD, e.g., "bind_user"
ad_auth_registration_username: "unset"

# The password to register with AD, e.g., "MyPaSsWoRd"
ad_auth_registration_password: "unset"

# The Organizational Unit to search in, e.g., "ou=Nerds,ou=Staff"
ad_auth_ou: "unset"

# The server to connect to, e.g., "ad.example.com"
ad_auth_server: "unset"

# The domain for SSSD configuration, e.g., "example.com"
ad_auth_domain: "usnet.local"

# Should this tool attempt to connect to the AD server?
# (This can be unset for automated testing)
ad_auth_join: yes

# To limit which users can log in, list the allowed users here:
# ad_auth_simple_allow_users:
#   - my_user_1
#   - my_user_2

Requirements

Status of requirements

The following roles help prepare a system. You can choose other ways for preparation, but I’ve tested these roles too.

Requirement GitHub GitLab
robertdebock.bootstrap Build Status GitHub Build Status GitLab
robertdebock.epel Build Status GitHub Build Status GitLab
robertdebock.python_pip Build Status GitHub Build Status GitLab

Context

This role is part of a set of compatible roles. For more information, check the documentation of these roles.

Here’s a summary of related roles: dependencies

Compatibility

This role has been tested on the following container images:

container tags
el 7

Ansible version 2.10 or higher is required. Tests have been conducted on:

  • The previous version.
  • The current version.
  • The development version.

If you encounter issues, please report them on GitHub.

License

Apache-2.0

Contributors

Thanks to everyone who contributed to this repository. Your help improves the project and makes it enjoyable to collaborate.

Author Information

Robert de Bock

Feel free to consider sponsoring me.

Informazioni sul progetto

Bind a system to Active Directory.

role activedirectory adauth authentication
Installa
ansible-galaxy install robertdebock.ad_auth
GitHub repository
4 stelle
1 fork
0 problemi aperti
Licenza
apache-2.0
Download
281
Proprietario
Robert de Bock
I know my way around (Linux) infrastructure, have a passion for automation, Docker, Ansible, Molecule and ci/cd.