--- # --- # NFS # --- nfs_server: 192.168.112.10 # Set 'fs_encrypted' to true if filesystem lives on an encrypted # partition. # nfs_exports: - src: 192.168.112.10:/data/home path: /data/home mount_opts: users,rsize=8192,wsize=8192,hard,intr export_opt: rw,root_squash,sync,subtree_check export_networks: - 192.168.112.0/24 - 10.0.112.0/24 - 10.1.112.0/24 - 192.168.63.0/24 fs_encrypted: false - src: 192.168.112.10:/data/shares path: /data/home mount_opts: users,rsize=8192,wsize=8192,hard,intr export_opt: rw,root_squash,sync,subtree_check export_networks: - 192.168.112.0/24 - 10.0.112.0/24 - 10.1.112.0/24 - 192.168.63.0/24 fs_encrypted: false # --- # Samba / NIS # --- samba_server: file-mbr.mbr-bln.netz samba_shares: - name: Arbeitsrechtliches user: - anne - bianca - birgit.erhardt - christina.wendt - chris - sysadm - name: Ausschreibungen user: - anne - bianca - chris - matthias.mueller - sysadm - name: BGN-Finanzen-Personal user: - anne - bianca - carolin - christina.wendt - chris - sysadm - ulf.balmer - name: BVV-Projekt user: - alexander.rasumny - anna.mueller1 - anne - benjamin - bianca - birgit.erhardt - bjoern.renkewitz - carolin - christina.wendt - chris - daniel.poensgen - doku2 - doku_4 - doku_7 - dorina.feldmann - franziska - johannes.radke - judith.heinmueller - kristina.holzapfel - lavinia.schwedersky - manja.kasten - mathias - matthias.mueller - michael.sulies - michael.trube - pia.lamberty - praktikum - praktikum_rias - praktikum2 - praktikum2_rias - sabine.kritter - samuel.signer - scan - simon - sysadm - ulf.balmer - name: Finanzen user: - anne - bianca - birgit.erhardt - christina.wendt - chris - sysadm - name: Install user: - chris - sysadm - lokaladmin - name: Kamera user: - anne - axis - bianca - chris - sysadm - name: MBR user: - alexander.rasumny - anna.mueller1 - anne - benjamin - bianca - birgit.erhardt - bjoern.renkewitz - carolin - christina.wendt - chris - daniel.poensgen - doku2 - doku_4 - doku_7 - dorina.feldmann - franziska - johannes.radke - judith.heinmueller - kristina.holzapfel - lavinia.schwedersky - manja.kasten - mathias - matthias.mueller - michael.sulies - michael.trube - pia.lamberty - praktikum - praktikum_rias - praktikum2 - praktikum2_rias - sabine.kritter - samuel.signer - scan - simon - sysadm - ulf.balmer - name: Mobilisierungsplattform user: - alexander.rasumny - anna.mueller1 - anne - benjamin - bianca - birgit.erhardt - bjoern.renkewitz - carolin - christina.wendt - chris - daniel.poensgen - doku2 - doku_4 - doku_7 - dorina.feldmann - franziska - johannes.radke - judith.heinmueller - kristina.holzapfel - lavinia.schwedersky - manja.kasten - mathias - matthias.mueller - michael.sulies - michael.trube - pia.lamberty - praktikum - praktikum_rias - praktikum2 - praktikum2_rias - sabine.kritter - samuel.signer - scan - simon - sysadm - ulf.balmer - name: RIAS user: - alexander.rasumny - anna.mueller1 - anne - benjamin - bianca - birgit.erhardt - bjoern.renkewitz - carolin - christina.wendt - chris - daniel.poensgen - doku2 - doku_4 - doku_7 - dorina.feldmann - franziska - johannes.radke - judith.heinmueller - kristina.holzapfel - lavinia.schwedersky - manja.kasten - mathias - matthias.mueller - michael.sulies - michael.trube - pia.lamberty - praktikum - praktikum_rias - praktikum2 - praktikum2_rias - sabine.kritter - samuel.signer - scan - simon - sysadm - ulf.balmer - name: RIAS-Finanzen-Personal user: - anne - bianca - benjamin - birgit.erhardt - christina.wendt - chris - sysadm - name: SCAN user: - alexander.rasumny - anna.mueller1 - anne - benjamin - bianca - birgit.erhardt - bjoern.renkewitz - carolin - christina.wendt - chris - daniel.poensgen - doku2 - doku_4 - doku_7 - dorina.feldmann - franziska - johannes.radke - judith.heinmueller - kristina.holzapfel - lavinia.schwedersky - manja.kasten - mathias - matthias.mueller - michael.sulies - michael.trube - pia.lamberty - praktikum - praktikum_rias - praktikum2 - praktikum2_rias - sabine.kritter - samuel.signer - scan - simon - sysadm - ulf.balmer - name: VDK user: - alexander.rasumny - anna.mueller1 - anne - benjamin - bianca - birgit.erhardt - bjoern.renkewitz - carolin - christina.wendt - chris - daniel.poensgen - doku2 - doku_4 - doku_7 - dorina.feldmann - franziska - johannes.radke - judith.heinmueller - kristina.holzapfel - lavinia.schwedersky - manja.kasten - mathias - matthias.mueller - michael.sulies - michael.trube - pia.lamberty - praktikum - praktikum_rias - praktikum2 - praktikum2_rias - sabine.kritter - samuel.signer - scan - simon - sysadm - ulf.balmer - name: Video user: - alexander.rasumny - anna.mueller1 - anne - benjamin - bianca - birgit.erhardt - bjoern.renkewitz - carolin - christina.wendt - chris - daniel.poensgen - doku2 - doku_4 - doku_7 - dorina.feldmann - franziska - johannes.radke - judith.heinmueller - kristina.holzapfel - lavinia.schwedersky - manja.kasten - mathias - matthias.mueller - michael.sulies - michael.trube - pia.lamberty - praktikum - praktikum_rias - praktikum2 - praktikum2_rias - sabine.kritter - samuel.signer - scan - simon - sysadm - ulf.balmer nis_domain: mbr-bln.netz #nis_domain: local.netz nis_server_address: 192.168.112.10 nis_server_name: file-mbr.mbr-bln.netz #nis_server_name: luna.local.netz nis_common_packages: - nis - nscd nis_deleted_user: [] nis_base_home: /data/home nis_groups: - name: mbr-buero group_id: 1200 - name: mbr-finanzen group_id: 1210 - name: mbr-personal group_id: 1220 - name: mbr-kamera group_id: 1250 - name: mbr-admins group_id: 1260 - name: vdk group_id: 1300 - name: rias group_id: 1400 - name: rias-finanzen-personal group_id: 1410 - name: bgn group_id: 1500 - name: bgn-finanzen-personal group_id: 1510 nis_user: - name: chris groups: - mbr-buero - mbr-finanzen - mbr-personal - mbr-kamera - mbr-admins - vdk - rias - rias-finanzen-personal - bgn - bgn-finanzen-personal is_samba_user: true password: !vault | $ANSIBLE_VAULT;1.1;AES256 38643435653764393333613564393733666139656264343833333632373938323230393036303234 3633303562636465643930643961663165646237386664370a386362346162313037353163383365 61343263386239316164613935633062343165363863376462653165306464633136313839343962 3865353333373661390a643564386432643532396632323664383330646430613033643130626430 6139 - name: lokaladmin groups: - mbr-buero - mbr-finanzen - mbr-personal - mbr-kamera - mbr-admins - vdk - rias - rias-finanzen-personal - bgn - bgn-finanzen-personal is_samba_user: true password: 'd4r1usz' - name: sysadm groups: - mbr-buero - mbr-finanzen - mbr-personal - mbr-kamera - mbr-admins - vdk - rias - rias-finanzen-personal - bgn - bgn-finanzen-personal is_samba_user: true password: 'KPk_Wf2F' - name: alexander.rasumny groups: - mbr-buero is_samba_user: true password: 'twT9Rjbv9mjq' - name: anna.mueller1 groups: - mbr-buero is_samba_user: true password: '5xp5ll9ar13us!' # --- # vars used by roles/ansible_dependencies # --- apt_ansible_dependencies: - python - python-apt - python3 - python3-apt - lsb-release - apt-transport-https - dbus - sudo - vim - net-tools - vlan # --- # vars used by roles/ansible_user # --- ssh_keys_admin: - 'ssh-rsa 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 chris@luna' - 'ssh-rsa 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 root@luna' ansible_remote_user: - name: lokaladmin password: $6$KLQUDbiw$qvsGUndXr2G3DxhML6maD/nsJtXfElSLQ7ufkMuJu2vACbYX7kqNXdiU17oX6CyN5L1xARZ.TiES/w7zfh0Cu/ shell: /bin/bash # --- # vars used by roles/common/tasks/basic.yml # --- time_zone: Europe/Berlin locales: - en_US.UTF-8 - de_DE.UTF-8 set_default_limit_nofile: false # --- # vars used by roles/common/tasks/sudoers.yml # --- sudo_users: - lokaladmin - chris - sysadm - localadmin # /etc/sudoers # sudoers_defaults: - env_reset - mail_badpass - 'secure_path="/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin"' sudoers_host_aliases: [] sudoers_user_aliases: [] sudoers_cmnd_aliases: [] sudoers_runas_aliases: [] sudoers_user_privileges: - name: root entry: 'ALL=(ALL:ALL) ALL' sudoers_group_privileges: [] # /etc/sudoers.d/50-user # sudoers_file_defaults: [] sudoers_file_host_aliases: [] sudoers_file_user_aliases: [] sudoers_file_cmnd_aliases: - name: MOUNT entry: '/bin/mount,/bin/umount' sudoers_file_runas_aliases: []