Add public host keytab

author alex <alex@pdp7.net>

Sun, 4 Jun 2023 13:53:12 +0000 (15:53 +0200)

committer alex <alex@pdp7.net>

Sun, 4 Jun 2023 13:53:12 +0000 (15:53 +0200)
author alex <alex@pdp7.net>
Sun, 4 Jun 2023 13:53:12 +0000 (15:53 +0200)
committer alex <alex@pdp7.net>
Sun, 4 Jun 2023 13:53:12 +0000 (15:53 +0200)
diff --git a/personal_infra/playbooks/roles/deploy_ipsilon/tasks/main.yml b/personal_infra/playbooks/roles/deploy_ipsilon/tasks/main.yml

index 20d7274d85cc30e681998819aff30b0b6720a8b1..11080d89efa4a7c61f1403f0320f646f2c9abfe6 100644 (file)
--- a/personal_infra/playbooks/roles/deploy_ipsilon/tasks/main.yml
+++ b/personal_infra/playbooks/roles/deploy_ipsilon/tasks/main.yml
@@ -5,6 +5,12 @@
      creates: /etc/ipsilon/idp
  - name: fix permissions
    command: chown -R ipsilon:ipsilon /var/lib/ipsilon/ /etc/ipsilon/
+- name: create public host
+  shell: ipa host-find {{ ipsilon.hostname }} || ipa host-add {{ ipsilon.hostname }}
+- name: create public service
+  shell: ipa service-find HTTP/{{ ipsilon.hostname }} || ipa service-add HTTP/{{ ipsilon.hostname }}
+- name: add public service to keytab
+  shell: klist -k /etc/httpd/conf/http.keytab | grep HTTP/{{ ipsilon.hostname }} || ipa-getkeytab -p HTTP/{{ ipsilon.hostname }} -k /etc/httpd/conf/http.keytab
  - name: restart httpd
    service:
      name: httpd
author	alex <alex@pdp7.net>
	Sun, 4 Jun 2023 13:53:12 +0000 (15:53 +0200)
committer	alex <alex@pdp7.net>
	Sun, 4 Jun 2023 13:53:12 +0000 (15:53 +0200)