cloudera.exe.freeipa_client role – Set up FreeIPA client

Note

This role is part of the cloudera.exe collection (version 3.0.0).

It is not included in ansible-core. To check whether it is installed, run ansible-galaxy collection list.

To install it use: ansible-galaxy collection install cloudera.exe..

To use it in a playbook, specify: cloudera.exe.freeipa_client.

Entry point main – Set up FreeIPA client

New in cloudera.exe 2.0.0

Synopsis

• Set up FreeIPA client, registering the host with a FreeIPA server, configured for DNS updates.

• Set up DNS search domain and DNS forwarders for name resolution.

• Install either defined or default FreeIPA client packages.

• Optionally, configure SSSD to enumerate users and groups.

Parameters

Parameter	Comments
freeipa_client_packages list / elements=string	List of FreeIPA packages to install. If not defined, the role will default to the packages defined in the freeipa.ansible_freeipa.ipaclient role.
ipaadmin_password string / required	Password of the FreeIPA user with elevated priviledges allowing host registration.
ipaadmin_principal string	Principal of the FreeIPA user with elevated priviledges allowing host registration. Default: "admin"
ipaclient_dns_servers list / elements=string / required	List of IP address of the DNS servers to use for resolution. Typically, the IP addresses of the FreeIPA DNS servers.
ipaclient_domain string / required	Domain name for DNS search and FreeIPA registration.
ipaclient_realm string / required	Realm for the Kerberos service.
ipaclient_servers list / elements=string / required	List of hostnames of the FreeIPA servers.
ipaclient_sssd_enumeration boolean	Flag to enable the enumeration setting in the SSSD configuration file. Choices: false ← (default) true

Authors

• Cloudera Labs

Collection Links

• Issue Tracker
• Repository (Sources)
• Submit a Bug Report
• Request a Feature