linux_kerberos
kerberos_client
This role will configure the host that it is run against as a Kerberos client.
Requirements
This role requires that you have a working Kerberos server, you know the realm name, and the client has access to the Kerberos server port.
Role Variables
The variables that can be passed to this role and a brief description about them are as follows:
kerberos_client_realm_name: EXAMPLE.COM # The name of the Kerberos Realm
kerberos_client_kdc_hostname: kerberos # The hostname of the the server
kerberos_client_admin_hostname: kerberos # The hostname of the Kerberos
# admin server
kerberos_client_dns_lookup_realm: false # If DNS should be looked up for
# the realm
kerberos_client_dns_lookup_kdc: false # If DNS should be looked up for KDC
kerberos_client_ticket_lifetime: 24h # The lifetime for the ticket issued
kerberos_client_renew_lifetime: 7d # When to renew the lifetime
kerberos_client_forwardable: true # Obtain a forwardable ticket
Example
Here is an example which deploys the Kerberos client with the Realm as JCHADWARD.COM and an admin user "root" and password "foobar":
- hosts: all
roles:
- {role: kerberos_client,
kerberos_client_realm_name: "JCHADWARD.COM",
kerberos_client_kadmin_user: "root",
kerberos_client_kadmin_pass: "foobar",
kerberos_client_kdc_hostname: "foobar" }
Dependencies
None
License
BSD
Author Information
J. Chad Ward
======= This role will configure the host that it is run against as a Kerberos client.
Requirements
This role requires that you have a working Kerberos server, you know the realm name, and the client has access to the Kerberos server port.
Role Variables
The variables that can be passed to this role and a brief description about them are as follows:
kerberos_client_realm_name: EXAMPLE.COM # The name of the Kerberos Realm
kerberos_client_kdc_hostname: kerberos # The hostname of the the server
kerberos_client_admin_hostname: kerberos # The hostname of the Kerberos
# admin server
kerberos_client_dns_lookup_realm: false # If DNS should be looked up for
# the realm
kerberos_client_dns_lookup_kdc: false # If DNS should be looked up for KDC
kerberos_client_ticket_lifetime: 24h # The lifetime for the ticket issued
kerberos_client_renew_lifetime: 7d # When to renew the lifetime
kerberos_client_forwardable: true # Obtain a forwardable ticket
Example
Here is an example which deploys the Kerberos client with the Realm as JCHADWARD.COM and an admin user "root" and password "foobar":
- hosts: all
roles:
- {role: kerberos_client,
kerberos_client_realm_name: "JCHADWARD.COM",
kerberos_client_kadmin_user: "root",
kerberos_client_kadmin_pass: "foobar",
kerberos_client_kdc_hostname: "foobar" }
Dependencies
None
License
BSD
Author Information
J. Chad Ward
1980027a730c2c10f55840d2b0e6600834c0b4e2
ansible-galaxy install wardcomm/linux_kerberos