From 915cc39b31b3dc021836fd93ebcc77458b767eae Mon Sep 17 00:00:00 2001
From: Thomas Woerner <twoerner@redhat.com>
Date: Thu, 19 Jul 2018 14:15:47 +0200
Subject: [PATCH] ipaclient,ipareplica: Set ipaclient_ssh_trust_dns to no by
 default

---
 roles/ipaclient/defaults/main.yml  | 1 +
 roles/ipareplica/defaults/main.yml | 1 +
 2 files changed, 2 insertions(+)

diff --git a/roles/ipaclient/defaults/main.yml b/roles/ipaclient/defaults/main.yml
index a7aedf97..da013cfd 100644
--- a/roles/ipaclient/defaults/main.yml
+++ b/roles/ipaclient/defaults/main.yml
@@ -10,3 +10,4 @@ ipaclient_allow_repair: no
 ipaclient_on_master: no
 ipaclient_no_ntp: no
 ipaclient_no_dns_lookup: no
+ipaclient_ssh_trust_dns: no
diff --git a/roles/ipareplica/defaults/main.yml b/roles/ipareplica/defaults/main.yml
index fb8c904b..5314df5c 100644
--- a/roles/ipareplica/defaults/main.yml
+++ b/roles/ipareplica/defaults/main.yml
@@ -19,6 +19,7 @@ ipaclient_no_ntp: no
 #ipaclient_no_ssh: no
 #ipaclient_no_sshd: no
 #ipaclient_no_dns_sshfp: no
+ipaclient_ssh_trust_dns: no
 ### certificate system ###
 ipareplica_skip_schema_check: no
 ### dns ###
-- 
GitLab