36 lines
794 B
YAML
36 lines
794 B
YAML
|
---
|
||
|
- name: Install slapd
|
||
|
apt:
|
||
|
update_cache: true
|
||
|
name:
|
||
|
- slapd
|
||
|
register: apt_result
|
||
|
retries: 3
|
||
|
until: apt_result is succeeded
|
||
|
|
||
|
- name: Remove slapd config directory
|
||
|
file:
|
||
|
path: /etc/ldap/slapd.d/
|
||
|
state: absent
|
||
|
|
||
|
- name: Deploy slapd configuration
|
||
|
template:
|
||
|
src: "ldap/{{ item.dest }}.j2"
|
||
|
dest: "/etc/ldap/{{ item.dest }}"
|
||
|
mode: "{{ item.mode }}"
|
||
|
owner: openldap
|
||
|
group: openldap
|
||
|
loop:
|
||
|
- { dest: slapd.conf, mode: "0600" }
|
||
|
- { dest: ldap.key, mode: "0600" }
|
||
|
- { dest: ldap.pem, mode: "0644" }
|
||
|
notify: Restart slapd
|
||
|
|
||
|
- name: Deploy ldap services
|
||
|
lineinfile:
|
||
|
path: /etc/default/slapd
|
||
|
regexp: '^SLAPD_SERVICES='
|
||
|
line: 'SLAPD_SERVICES="ldaps://{{ slapd.ip }}/ ldapi:///"'
|
||
|
notify: Restart slapd
|
||
|
check_mode: no
|