From fd88ba1c7d5cc6e1ac39998c7ea05bbe86bbc629 Mon Sep 17 00:00:00 2001
From: Thomas Woerner <twoerner@redhat.com>
Date: Fri, 15 Sep 2017 12:51:40 +0200
Subject: [PATCH] roles/ipaclient/tasks/install.yml: Checks for principal,
 keytab and password

---
 roles/ipaclient/tasks/install.yml | 10 ++++++----
 1 file changed, 6 insertions(+), 4 deletions(-)

diff --git a/roles/ipaclient/tasks/install.yml b/roles/ipaclient/tasks/install.yml
index 756446c5..360b5536 100644
--- a/roles/ipaclient/tasks/install.yml
+++ b/roles/ipaclient/tasks/install.yml
@@ -44,11 +44,13 @@
 
   when: ipaclient_use_otp | bool
 
-- fail: msg="At least one of password, keytab or otp must be specified"
-  when: ipaclient_password is undefined and ipaclient_keytab is undefined and ipaclient_otp is undefined
+- name: Install - Check if principal and keytab are set
+  fail: msg="Principal and keytab cannot be used together"
+  when: ipaclient_principal is defined and ipaclient_keytab is defined
 
-- fail: msg="Password is not defined"
-  when: ipaclient_password is undefined
+- name: Install - Check if one of password and keytab are set
+  fail: msg="At least one of password or keytab must be specified"
+  when: ipaclient_password is undefined and ipaclient_keytab is undefined
 
 - name: Install - Join IPA
   ipajoin:
-- 
GitLab