Halaman utama Jelajahi Bantuan
Masuk
RONCC
/
Dell-Omnia-Clusters-HPC-AI
Liatin 1
Bintangi 0
Fork 0
Berkas Masalah 0 Tarik Permintaan 0 Wiki
Cabang: release-1.1
Ranting Tag
Dell-Omnia-C...
/
control_plane
/
tools
/
roles
/
idrac_ldap
/
tasks
/
configure_ldap.yml

configure_ldap.yml 2.3 KB
Permalink Riwayat Mentahan

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960 
  1. # Copyright 2021 Dell Inc. or its subsidiaries. All Rights Reserved.
    2. 

  2. #
    3. 

  3. # Licensed under the Apache License, Version 2.0 (the "License");
    4. 

  4. # you may not use this file except in compliance with the License.
    5. 

  5. # You may obtain a copy of the License at
    6. 

  6. #
    7. 

  7. #     http://www.apache.org/licenses/LICENSE-2.0
    8. 

  8. #
    9. 

  9. # Unless required by applicable law or agreed to in writing, software
    10. 

  10. # distributed under the License is distributed on an "AS IS" BASIS,
    11. 

  11. # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
    12. 

  12. # See the License for the specific language governing permissions and
    13. 

  13. # limitations under the License.
    14. 

  14. ---
    15. 

  15. 

  16. - name: Enable LDAP
    17. 

  17.   community.general.idrac_redfish_config:
    18. 

  18.     category: Manager
    19. 

  19.     command: SetManagerAttributes
    20. 

  20.     resource_id: iDRAC.Embedded.1
    21. 

  21.     manager_attributes:
    22. 

  22.       LDAP.1.Enable: "Enabled"
    23. 

  23.       LDAP.1.Server: "{{ ldap_server_address }}"
    24. 

  24.       LDAP.1.BaseDN: "{{ base_dn }}"
    25. 

  25.       LDAP.1.UserAttribute: "{{ user_attribute }}"
    26. 

  26.       LDAP.1.GroupAttribute: "{{ group_attribute }}"
    27. 

  27.       LDAP.1.GroupAttributeIsDN: "{{ group_attribute_is_dn }}"
    28. 

  28.       LDAP.1.BindDN: "{{ bind_dn }}"
    29. 

  29.       LDAP.1.BindPassword: "{{ bind_password }}"
    30. 

  30.       LDAP.1.SearchFilter: "{{ search_filter }}"
    31. 

  31.       LDAP.1.CertValidationEnable: "{{ cert_validation_enable }}"
    32. 

  32.       LDAPRoleGroup.1.DN: "{{ role_group1_dn }}"
    33. 

  33.     baseuri: "{{ inventory_hostname }}"
    34. 

  34.     username: "{{ idrac_username }}"
    35. 

  35.     password: "{{ idrac_password }}"
    36. 

  36.   register: enable_ldap
    37. 

  37.   no_log: true
    38. 

  38.   when: ldap_directory_services == "enabled"
    39. 

  39. 

  40. - name: Update LDAP port and role group 1 privilage
    41. 

  41.   command: sshpass -p {{ idrac_password }} ssh -o "StrictHostKeyChecking no" {{ idrac_username }}@{{ inventory_hostname }} 'racadm set {{ item.name }} {{ item.value }}'
    42. 

  42.   changed_when: true
    43. 

  43.   no_log: true
    44. 

  44.   when: ldap_directory_services == "enabled"
    45. 

  45.   with_items:
    46. 

  46.     - { name: "iDRAC.LDAP.Port", value: "{{ ldap_port }}" }
    47. 

  47.     - { name: "iDRAC.LDAPRoleGroup.1.Privilege", value: "{{ role_group1_privilege_id }}" } 
    48. 

  48.           
    49. 

  49. - name: Disable LDAP
    50. 

  50.   community.general.idrac_redfish_config:
    51. 

  51.     category: Manager
    52. 

  52.     command: SetManagerAttributes
    53. 

  53.     resource_id: iDRAC.Embedded.1
    54. 

  54.     manager_attributes:
    55. 

  55.       LDAP.1.Enable: "Disabled"
    56. 

  56.     baseuri: "{{ inventory_hostname }}"
    57. 

  57.     username: "{{ idrac_username }}"
    58. 

  58.     password: "{{ idrac_password }}"
    59. 

  59.   register: disable_ldap
    60. 

  60.   when: ldap_directory_services == "disabled"
    61.