ansible/nis
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

update ..

Browse Source
This commit is contained in:
Christoph
2024-07-13 23:31:23 +02:00
parent 9b3b9d780f
commit da018fb967
41 changed files with 17951 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
group_vars/flr.yml
View File

@ -232,6 +232,7 @@ nis_user:
- name: carla
groups:
- amif
- foerderung
- quali
- team

476
group_vars/kb.yml Normal file
View File

@ -0,0 +1,476 @@
---
# ==========
# vars used by roles/common/tasks/basic.yml
# ==========
# ==========
# vars used by roles/common/tasks/sshd.yml
# ==========
sshd_permit_root_login: !!str "prohibit-password"
# ==========
# vars used by roles/common/tasks/apt.yml
# ==========
# ==========
# vars used by roles/common/tasks/git.yml
# ==========
# ==========
# vars used by roles/common/tasks/cups-install.yml
# ==========
# ==========
# vars used by roles/common/tasks/ntp.yml
# ==========
# name or ip-adress from the (local) ntp server, mostly the gateway
#
#ntp_server: gw-kb.anw-kb.netz
# ==========
# vars used by roles/common/tasks/nfs.yml
# ==========
nfs_server: 192.168.32.20
# Set 'fs_encrypted' to true if filesystem lives on an encrypted
# partition.
#
# NOTE !!
# Take car to increase 'fsid' in case of more than one export
#
nfs_exports:
# chris (uid 1001) kb-buero (gid 1200)
- src: 192.168.2.20:/data/shares
path: /data/shares
mount_opts: users,rsize=8192,wsize=8192,hard,intr
export_opt: rw,all_squash,anonuid=1001,anongid=1200,sync,subtree_check
export_networks:
- 192.168.63.0/24
- 10.0.32.110
use_fsid_option: true
# buero (uid 1004) kb-buero (gid 1200)
- src: 192.168.2.20:/data/shares
path: /data/shares
mount_opts: users,rsize=8192,wsize=8192,hard,intr
export_opt: rw,all_squash,anonuid=1004,anongid=1200,sync,subtree_check
export_networks:
- 10.0.32.0/24
- 192.168.2.0/24
- 192.168.63.0/24
use_fsid_option: true
# andreas (uid 1002) kb-buero (gid 1200)
- src: 192.168.2.20:/data/shares
path: /data/shares
mount_opts: users,rsize=8192,wsize=8192,hard,intr
export_opt: rw,all_squash,anonuid=1002,anongid=1200,sync,subtree_check
export_networks:
- 10.0.32.102
- 192.168.2.102
- 192.168.2.202
- 192.168.2.180
- 192.168.2.181
use_fsid_option: true
# barbara (uid 1003) kb-buero (gid 1200)
- src: 192.168.2.20:/data/shares
path: /data/shares
mount_opts: users,rsize=8192,wsize=8192,hard,intr
export_opt: rw,all_squash,anonuid=1003,anongid=1200,sync,subtree_check
export_networks:
- 10.0.32.103
- 192.168.2.133
- 192.168.2.207
use_fsid_option: true
# carolin (uid 1005) kb-buero (gid 1200)
- src: 192.168.2.20:/data/shares
path: /data/shares
mount_opts: users,rsize=8192,wsize=8192,hard,intr
export_opt: rw,all_squash,anonuid=1005,anongid=1200,sync,subtree_check
export_networks:
- 10.0.32.105
- 192.168.2.206
use_fsid_option: true
# joachim (uid 1006) kb-buero (gid 1200)
- src: 192.168.2.20:/data/shares
path: /data/shares
mount_opts: users,rsize=8192,wsize=8192,hard,intr
export_opt: rw,all_squash,anonuid=1006,anongid=1200,sync,subtree_check
export_networks:
- 10.0.32.106
- 192.168.2.105
use_fsid_option: true
# ronald (uid 1007) kb-buero (gid 1200)
- src: 192.168.2.20:/data/shares
path: /data/shares
mount_opts: users,rsize=8192,wsize=8192,hard,intr
export_opt: rw,all_squash,anonuid=1007,anongid=1200,sync,subtree_check
export_networks:
- 10.0.32.107
- 192.168.2.204
use_fsid_option: true
# sabine (uid 1008) kb-buero (gid 1200)
- src: 192.168.2.20:/data/shares
path: /data/shares
mount_opts: users,rsize=8192,wsize=8192,hard,intr
export_opt: rw,all_squash,anonuid=1008,anongid=1200,sync,subtree_check
export_networks:
- 10.0.32.108
- 192.168.2.112
- 192.168.2.212
use_fsid_option: true
# wiebke (uid 1009) kb-buero (gid 1200)
- src: 192.168.2.20:/data/shares
path: /data/shares
mount_opts: users,rsize=8192,wsize=8192,hard,intr
export_opt: rw,all_squash,anonuid=1009,anongid=1200,sync,subtree_check
export_networks:
- 10.0.32.109
- 192.168.2.190
use_fsid_option: true
# ==========
# vars used by roles/common/tasks/system-user.yml
# ==========
# ! Notice !
#
# On NIS supported Server put your users and groups in the
# appropriate section for playbook 'nis-user.yml'
#
# ! Notice !
remove_system_users: []
#remove_system_users:
# - name: test
# - name: jennifer.prost
system_users: []
#system_users:
# - name: sysadm
# password: '9xFXkdPR_2'
system_groups: []
base_home: /home
# ==========
# vars used by roles/common/tasks/nis-install-server.yml
# vars used by roles/common/tasks/nis-user.yml
# vars used by roles/common/tasks/nis-install-client.yml
# ==========
# used by templates
# - yp.conf.j2
# - defaultdomain.j2
nis_domain: anw-kb.netz
# also used by template
# - yp.conf.j2
nis_server_address: 192.168.2.20
nis_server_name: file-kb.anw-kb.netz
nis_base_home: /data/home
nis_groups:
- name: all-users
group_id: 1100
- name: kb-buero
group_id: 1200
#nis_groups:
# - name: mbr-finanzen (wird zu vdk)
# group_id: 1210
# - name: mbr-personal (wird zu mbr-finanzen-personal)
# group_id: 1220
remove_nis_users: []
#remove_nis_users:
# - name: test
# - name: jennifer.prost
nis_user:
- name: chris
groups:
- all-users
- kb-buero
is_samba_user: true
password: !vault |
$ANSIBLE_VAULT;1.1;AES256
35653838343532663632326462656437363665316337316336316335383263633630616638313736
3937666561356232666136646435613361336437303637360a353561316633373265323931623565
32643966373962313334343565643130373535353238316161623837333130353231343332663930
3638386337333636390a393738373935646638383237373663376434366361363938346335663438
6637
- name: lokaladmin
groups:
- all-users
- kb-buero
is_samba_user: true
password: 'd4r1usz'
- name: sysadm
groups:
- all-users
- kb-buero
is_samba_user: true
password: '3z_3kKsmhn'
- name: andreas
groups:
- all-users
- kb-buero
is_samba_user: true
password: ''
- name: anja
groups:
- all-users
- kb-buero
is_samba_user: true
password: 'Eqwg/2A-uXn3'
- name: barbara
groups:
- all-users
- kb-buero
is_samba_user: true
password: ''
- name: buero
groups:
- all-users
- kb-buero
is_samba_user: true
password: '1qwert!'
- name: carolin
groups:
- all-users
- kb-buero
is_samba_user: true
password: ''
- name: joachim
groups:
- all-users
- kb-buero
is_samba_user: true
password: ''
- name: ronald
groups:
- all-users
- kb-buero
is_samba_user: true
password: ''
- name: sabine
groups:
- all-users
- kb-buero
is_samba_user: true
password: ''
- name: wiebke
groups:
- all-users
- kb-buero
is_samba_user: true
password: ''
# ==========
# vars used by roles/common/tasks/samba-install.yml
# ==========
samba_server: file-kb.anw-kb.netz
samba_server_ip: 192.168.2.20
samba_server_cidr_prefix: 24
# ==========
# vars used by roles/common/tasks/samba-user.yml
# ==========
# ! Notice !
#
# variables used from other previos sections:
#
# - remove_system_users: roles/common/tasks/system-user.yml
# - remove_nis_users: roles/common/tasks/nis-install-server.yml
# - nis_user: roles/common/tasks/nis-install-server.yml
# ==========
# vars used by roles/common/tasks/mount_samba_shares.yml
# ==========
# ! Notice !
#
# variables used from other previos sections:
#
# - nis_user: roles/common/tasks/nis-install-server.yml
samba_workgroup: ANW-KB
samba_netbios_name: FILE-KB
samba_shares:
# ---
# Bürogemeinschaft
# ---
- name: Server
path: /data/shares
group_valid_users: kb-buero
group_write_list: kb-buero
file_create_mask: '0660'
dir_create_mask: '2770'
vfs_object_recycle: true
recycle_path: '@Recycle.Bin'
- name: Post
path: /data/shares/Post
group_valid_users: kb-buero
group_write_list: kb-buero
file_create_mask: '0660'
dir_create_mask: '2770'
vfs_object_recycle: true
recycle_path: '@Recycle.Bin'
- name: Guenzler
path: /data/shares/Post/Guenzler
group_valid_users: kb-buero
group_write_list: kb-buero
file_create_mask: '0660'
dir_create_mask: '2770'
vfs_object_recycle: true
recycle_path: '@Recycle.Bin'
- name: Genge
path: /data/shares/Post/Genge
group_valid_users: kb-buero
group_write_list: kb-buero
file_create_mask: '0660'
dir_create_mask: '2770'
vfs_object_recycle: true
recycle_path: '@Recycle.Bin'
- name: Kaufmann
path: /data/shares/Post/Kaufmann
group_valid_users: kb-buero
group_write_list: kb-buero
file_create_mask: '0660'
dir_create_mask: '2770'
vfs_object_recycle: true
recycle_path: '@Recycle.Bin'
- name: Landvogt
path: /data/shares/Post/Landvogt
group_valid_users: kb-buero
group_write_list: kb-buero
file_create_mask: '0660'
dir_create_mask: '2770'
vfs_object_recycle: true
recycle_path: '@Recycle.Bin'
- name: Tiburtius
path: /data/shares/Post/Tiburtius
group_valid_users: kb-buero
group_write_list: kb-buero
file_create_mask: '0660'
dir_create_mask: '2770'
vfs_object_recycle: true
recycle_path: '@Recycle.Bin'
- name: Fax
path: /data/shares/Post/Fax
group_valid_users: kb-buero
group_write_list: kb-buero
file_create_mask: '0660'
dir_create_mask: '2770'
vfs_object_recycle: true
recycle_path: '@Recycle.Bin'
# ==========
# vars used by roles/common/tasks/system-user-systemfiles.yml
# ==========
# ! Notice !
#
# variables used from other previos sections:
#
# - system_users: roles/common/tasks/system-user.yml
# ==========
# vars used by roles/common/tasks/nis-user-systemfiles.yml
# ==========
# ! Notice !
#
# variables used from other previos sections:
#
# - nis_user: roles/common/tasks/nis-install-server.yml
# ==========
# vars used by roles/common/tasks/sudoers-pc.yml
# ==========
sudo_pc_users:
- andreas
- chris
- sysadm
- lokaladmin
# ==========
# vars used by roles/common/tasks/sudoers-server.yml
# ==========
# ==========
# vars used by roles/common/tasks/ubuntu-x11vnc-1604-amd64.yml
# vars used by roles/common/tasks/ubuntu-x11vnc-1804-amd64.yml
# ==========
# ==========
# vars used by roles/common/tasks/luks.yml
# ==========