openldap_server
This roles installs the OpenLDAP server on the target machine. It has the option to enable/disable SSL by setting it in defaults or overriding it.
Requirements
This role requires Ansible 1.4 or higher, and platform requirements are listed in the metadata file.
Role Variables
The variables that can be passed to this role and a brief description about them are as follows:
openldap_serverdomain_name: example.com # The domain prefix for ldap
openldap_serverrootpw: passme # This is the password for admin for openldap
openldap_serverenable_ssl: true # To enable/disable ssl for the ldap
openldap_servercountry: US # The self signed ssl certificate parameters
openldap_serverstate: Oregon
openldap_serverlocation: Portland
openldap_serverorganization: IT
# Create users
openldap_enable_user_creation: true
openldap_server_users:
staff:
william:
password: 26April1564
fullname: William Shakespeare
givenname: William
surname: Shakespeare
email: william@example.com
shell: /usr/bin/zsh
phone: "555-5555-555"
john:
password: 31Oct1795
fullname: John Keats
givenname: John
surname: Keats
email: john@example.com
shell: /usr/bin/bash
Examples
-
Configure an OpenLDAP server without SSL:
- hosts: all
sudo: true
roles:
- role: bennojoy.openldap_server openldap_server_domain_name: example.com openldap_server_rootpw: passme openldap_server_enable_ssl: false
- hosts: all
sudo: true
roles:
-
Configure an OpenLDAP server with SSL:
- hosts: all
sudo: true
roles:
- role: bennojoy.openldap_server openldap_server_domain_name: example.com openldap_server_rootpw: passme openldap_server_enable_ssl: true openldap_server_country: US openldap_server_state: Oregon openldap_server_location: Portland openldap_server_organization: IT
- hosts: all
sudo: true
roles:
Dependencies
None
License
BSD
Author Information
Benno Joy