b3c5724f9a
library/roles/openldap-server/vars/main.yml: Stick to RSA keys for the openldap certificates.
2018-12-20 12:40:18 +01:00
91485d7049
Use a conditional to install/remove the cron job that restarts the slapd service daily.
2018-05-08 20:57:00 +02:00
5e12af6402
Do not restart the ldap service when a certificate is being renewed. Search for a better solution.
2018-05-08 20:39:22 +02:00
7d707c10c0
Fix a task name.
2018-05-08 20:38:34 +02:00
3f720c9b7a
Fix the openldap letsencrypt hook.
2018-05-08 20:07:41 +02:00
7742651674
library/roles/openldap-server/templates/consumer.ldif.j2: Do not load the syncprov module, it is not necessary on the replicas.
2018-03-30 18:54:48 +02:00
a02fb4762d
library/roles/openldap-server/defaults/main.yml: Add a perl library that provides a crc32 executable.
2018-03-30 18:53:59 +02:00
53f2739b73
library/roles/openldap-server/templates/consumer.ldif.j2: Fix a typo.
2018-03-30 16:01:47 +02:00
e912f58caa
openldap: Install a custom DB_CONFIG
2018-03-04 12:18:36 +01:00
11466ea877
openldap: add templates and tasks to setup a replica
2018-03-03 20:06:20 +01:00
170fb7bd08
library/roles/openldap-server/files/olcSSL.ldif: Change the syntax of the entries. The old one failed on the slave server.
2018-03-03 17:41:33 +01:00
bccb9c27ca
Create the debconf configuration before installing the slapd package
2018-03-01 18:24:35 +01:00
7b0578c7d8
Fix the letsencrypt hook for openldap
2018-03-01 18:07:57 +01:00
3cab0247bb
library/roles/openldap-server/templates/base-dn.ldif.j2: Remove some controversial changes.
2018-03-01 16:28:51 +01:00
859e6c7f87
Fix the variable that sets the base DN. Add entries to set the main ACLs
2018-03-01 14:48:01 +01:00
f9cea4b143
Various fixes to the ldap playbook. Now force the correct base DN.
2018-03-01 14:30:17 +01:00
293b71f036
library/roles: Fix all the letsencrypt hook script. We need to use the FQDN hostname.
2016-06-23 14:05:11 +02:00
b382db3b25
d4science-infrastructure/group_vars/ldap_liferay/all.yml: Enable ssl with the use of letsencrypt certificates.
...
library/roles/haproxy/files: Fix to the acme scripts, the certificate path has become /etc/pki/haproxy/haproxy.pem.
library/roles/openldap-server/tasks/openldap_initializazion.yml: Fix the certificates initialization.
library/roles/ubuntu-deb-general/tasks/pki-basics.yml: Create a self signed certificate while waiting the letsencrypt one.
2016-04-20 15:21:19 +02:00
bb862c8405
library/roles/openldap-server: Support for ssl when letsencrypt is enabled using the letsencrypt-acme-tool role.
2016-04-15 20:33:23 +02:00
Tommaso Piccioli
433bb8e7cb
db_archive verbose log
2016-03-14 14:48:56 +01:00
f6414fdb92
library/roles/openldap-server: add script and an optional cron job to remove the old transaction logs. Ansible 2 fixes.
2016-03-10 16:53:35 +01:00
Andrea Dell'Amico
9e2fd102b0
d4science-gcube: work on a ldap playbook.
...
library/roles/openldap-server: role that installs and configure an openldap 2.4+ server.
infrastructure-services/roles/smtp_relay_nagios_monitoring: nagios checks to monitor the smtp relay.
2015-07-16 22:48:46 +02:00
Andrea Dell'Amico
10441129fc
library/roles/dnet_user_services_perms: Manage more directories. Logs in /var/log/dnet
...
library/roles/iptables/templates/iptables-rules.v6.j2: Fix the reject options
library/roles/tomcat: Install a catalina.properties that matches the one used by the multiple instances role
library/roles/tomcat/templates/tomcat-server.xml.j2: Do not generate a random password when the shutdown port is disabled
2015-07-16 13:25:02 +02:00
Andrea Dell'Amico
e1180b39a7
library/roles/mysql: better backup script. Now supports nagios and a retain interval.
...
library/roles/iptables: special case for ldap.
library/roles/openldap-server: first bits of a openldap role
2015-07-14 00:30:49 +02:00
Andrea Dell'Amico
Andrea Dell'Amico
Tommaso Piccioli
Andrea Dell'Amico