linux_kerberos

kerberos_client

This role will configure the host that it is run against as a Kerberos client.

Requirements

This role requires that you have a working Kerberos server, you know the realm name, and the client has access to the Kerberos server port.

Role Variables

The variables that can be passed to this role and a brief description about them are as follows:

kerberos_client_realm_name: EXAMPLE.COM           # The name of the Kerberos Realm
kerberos_client_kdc_hostname: kerberos            # The hostname of the the server
kerberos_client_admin_hostname: kerberos          # The hostname of the Kerberos
                                                  # admin server
kerberos_client_dns_lookup_realm: false           # If DNS should be looked up for
                                                  # the realm
kerberos_client_dns_lookup_kdc: false             # If DNS should be looked up for KDC
kerberos_client_ticket_lifetime: 24h              # The lifetime for the ticket issued
kerberos_client_renew_lifetime: 7d                # When to renew the lifetime
kerberos_client_forwardable: true                 # Obtain a forwardable ticket

Example

Here is an example which deploys the Kerberos client with the Realm as JCHADWARD.COM and an admin user "root" and password "foobar":

- hosts: all
  roles:
  - {role: kerberos_client,
           kerberos_client_realm_name: "JCHADWARD.COM",
           kerberos_client_kadmin_user: "root",
           kerberos_client_kadmin_pass: "foobar",
           kerberos_client_kdc_hostname: "foobar" }

Dependencies

None

License

BSD

Author Information

J. Chad Ward

======= This role will configure the host that it is run against as a Kerberos client.

Requirements

This role requires that you have a working Kerberos server, you know the realm name, and the client has access to the Kerberos server port.

Role Variables

The variables that can be passed to this role and a brief description about them are as follows:

kerberos_client_realm_name: EXAMPLE.COM           # The name of the Kerberos Realm
kerberos_client_kdc_hostname: kerberos            # The hostname of the the server
kerberos_client_admin_hostname: kerberos          # The hostname of the Kerberos
                                                  # admin server
kerberos_client_dns_lookup_realm: false           # If DNS should be looked up for
                                                  # the realm
kerberos_client_dns_lookup_kdc: false             # If DNS should be looked up for KDC
kerberos_client_ticket_lifetime: 24h              # The lifetime for the ticket issued
kerberos_client_renew_lifetime: 7d                # When to renew the lifetime
kerberos_client_forwardable: true                 # Obtain a forwardable ticket

Example

Here is an example which deploys the Kerberos client with the Realm as JCHADWARD.COM and an admin user "root" and password "foobar":

- hosts: all
  roles:
  - {role: kerberos_client,
           kerberos_client_realm_name: "JCHADWARD.COM",
           kerberos_client_kadmin_user: "root",
           kerberos_client_kadmin_pass: "foobar",
           kerberos_client_kdc_hostname: "foobar" }

Dependencies

None

License

BSD

Author Information

J. Chad Ward

1980027a730c2c10f55840d2b0e6600834c0b4e2

About

Role for getting a linux box in Windows AD

Install
ansible-galaxy install wardcomm/linux_kerberos
GitHub repository
License
Unknown
Downloads
38