Skip to content
  1. Jul 27, 2020
  2. Jun 30, 2020
  3. Apr 26, 2020
  4. Mar 20, 2020
    • Thomas Woerner's avatar
      ipa[server,replica,client]: setup_logging wrapper for standard_logging_setup · d31a132a
      Thomas Woerner authored
      The import of ansible_ipa_server, ansible_ipa_replica and ansible_ipa_client
      might result in a permission denied error for the log file. It seems that
      for collections the module utils seem to be loaded before the needed
      permissions are aquired now.
      
      The fix simply adds a wrapper for standard_logging_setup that is called in
      all the modules of the server, replica and client roles to do the loggin
      setup as one of the first steps of the module execution and not before.
      d31a132a
  5. Jan 23, 2020
  6. Dec 06, 2019
  7. Dec 02, 2019
  8. Nov 20, 2019
    • Thomas Woerner's avatar
      ipaclient: Fix misspelled sssd options · 6ad82e6b
      Thomas Woerner authored
      The sssd options in the ipaclient role missed a 's' in the role. The readme
      of the role used the proper names with 3 's'. The names in the role have
      been fixed and if the old setting are used, they will be used in the first
      place.
      
      Also utils/ansible-ipa-client-install has been adaped to use the proper
      option names now.
      
      This fixes issue #145 (The ipaclient role misspells sssd)
      6ad82e6b
  9. Oct 25, 2019
  10. Oct 07, 2019
  11. Sep 04, 2019
  12. Jul 23, 2019
  13. Jul 22, 2019
  14. Jul 17, 2019
  15. Jul 16, 2019
  16. Jul 11, 2019
    • Thomas Woerner's avatar
      library/ipaclient_get_otp: Enable force mode for host_add call · 1fa1468b
      Thomas Woerner authored
      When OTP is used for installation of a client or the client part of
      a replica and also there is no DNS record for the client, then
      ipaclient_get_otp fails in the host_add call.
      
      With the force mode the host_add call will ignore the missing DNS
      record and will properly add the host. The host information and also
      the DNS record will be updated while deploying the client according
      to the given settings.
      
      Fixes: #74 (ipaclient fails when ipaclient_use_otp is true and client ..)
      1fa1468b
  17. Jul 05, 2019
    • Thomas Woerner's avatar
      ipaclient: Support sync_time changes of 4.8.0 · 03d904b7
      Thomas Woerner authored
      sync_time is not using options anymore, but has two new arguments. These
      are ntp_servers and ntp_pool. The options argument is not used anymore.
      
      This requires to use inspect on sync_time to be able to detect if the old
      or the new function is available.
      
      The call for get_time_source has been added, but is documented out as the
      call is only useful in interactive mode.
      
      ipaclient_test now returns ntp_servers and ntp_pool, which are then used
      for ipaclient_setup_ntp.
      03d904b7
    • Thomas Woerner's avatar
      ipaclient/action_plugins/ipaclient_get_otp: Enhanced error reporting · 7a5fadfc
      Thomas Woerner authored
      If kinit_password call failed because of wrong password or even because
      kinit was not found, there was a very unspecific error message. Now these
      errors will be properly reported.
      
      Fixes: RHBZ#1727277
      7a5fadfc
    • Thomas Woerner's avatar
      roles/ipaclient/README.md: OTP needs kinit on controller · 45b2648a
      Thomas Woerner authored
      Add Information about needed /usr/bin/kinit on the controller when OTP is used
      45b2648a
  18. Jun 26, 2019
  19. Jun 21, 2019
  20. Jun 17, 2019
    • Thomas Woerner's avatar
      ipaclient: Report error message if ipaclient_get_otp failed · 2372e5b9
      Thomas Woerner authored
      Currently the error message of ipaclient_get_otp is not visble if it failed
      due to the use of no_log. The no_log option is needed and useful if the
      one-time password has successfully been generated, but is bad if there was
      an error while generating the password, for example if a clock skew has been
      detected.
      
      There is now a new task to print the error message if ipaclient_get_otp. The
      task for ipaclient_get_otp has been marked with "ignore_errors: yes" and
      the new task "Install - Report error for OTP generation" will always fail
      and only be used if result_ipaclient_get_otp is failed.
      2372e5b9
    • Thomas Woerner's avatar
      ipaclient: Fix test of newly supported ipaadmin_keytab use in ipaclient_join · 50046a73
      Thomas Woerner authored
      The check for the ipaadmin_keytab was not using "is defined". Because of this
      the playbook processing failed if the variable was not defined.
      50046a73
  21. Jun 14, 2019
Loading