Skip to content
Snippets Groups Projects
Select Git revision
  • f5f454915c327bc59042e2dd71cf27118ab3f7e2
  • master default protected
  • v1.14.7
  • v1.14.6
  • v1.14.5
  • v1.14.4
  • v1.14.3
  • v1.14.2
  • v1.14.1
  • v1.14.0
  • v1.13.2
  • v1.13.1
  • v1.13.0
  • v1.12.1
  • v1.12.0
  • v1.11.1
  • v1.11.0
  • v1.10.0
  • v1.9.2
  • v1.9.1
  • v1.9.0
  • v1.8.4
22 results

README-vault.md

Blame
    • README-vault.md 7.31 KiB

    Vault module

    Description

    The vault module allows to ensure presence and absence of vault and members of vaults.

    The vault module is as compatible as possible to the Ansible upstream ipa_vault module, and additionally offers to make sure that vault members, groups and owners are present or absent in a vault, and allow the archival of data in vaults.

    Features

    • Vault management

    Supported FreeIPA Versions

    FreeIPA versions 4.4.0 and up are supported by the ipavault module.

    Requirements

    Controller

    • Ansible version: 2.14+

    Node

    • Supported FreeIPA version (see above)
    • KRA service must be enabled

    Usage

    Example inventory file

    [ipaserver]
ipaserver.test.local

    Example playbook to make sure vault is present (by default, vault type is symmetric):

    ---
- name: Playbook to handle vaults
  hosts: ipaserver
  become: true

  tasks:
  - ipavault:
      ipaadmin_password: SomeADMINpassword
      name: symvault
      password: SomeVAULTpassword
      description: A standard private vault.

    Example playbook to make sure that a vault and its members are present:

    ---
- name: Playbook to handle vaults
  hosts: ipaserver
  become: true

  tasks:
  - ipavault:
      ipaadmin_password: SomeADMINpassword
      name: symvault
      username: admin
      users: user01