update..

host_vars/o17.oopen.de.yml

@@ -193,7 +193,6 @@ default_user:
 
 sudo_users:
   - chris
-  - o13-pad
   - sysadm
   - localadmin
 
@@ -229,6 +228,215 @@ git_firewall_repository:
   repo: https://git.oopen.de/firewall/ipt-server
   dest: /usr/local/src/ipt-server
 
+
+# ---
+# vars used by roles/common/tasks/samba-config-server.yml
+# vars used by roles/common/tasks/samba-user.yml
+# ---
+
+samba_workgroup: AH
+
+samba_netbios_name: FILE-AH
+
+samba_groups:
+  - name: verwaltung
+    group_id: 1200
+  - name: intern
+    group_id: 1210
+  - name: hoffmann-elberling
+    group_id: 1220
+  - name: gubitz-partner
+    group_id: 1230
+
+samba_user:
+  - name: buero
+    groups:
+      - verwaltung
+      - intern
+    password: 'buero2011'
+  - name: axel
+    groups:
+      - intern
+      - verwaltung
+      - hoffmann-elberling
+    password: 'ah-kiel.2018'
+  - name: bjoern
+    groups:
+      - intern
+      - verwaltung
+      - hoffmann-elberling
+    password: 'bjoern2011'
+  - name: gubitz
+    groups:
+      - intern
+      - verwaltung
+      - gubitz-partner
+    password: '20gubitz12'
+  - name: schaar
+    groups:
+      - intern
+      - verwaltung
+      - gubitz-partner
+    password: '20schaar12'
+  - name: molkentin
+    groups:
+      - intern
+      - verwaltung
+      - gubitz-partner
+    password: 20molkentin12
+  - name: buerooben
+    groups:
+      - intern
+      - verwaltung
+      - hoffmann-elberling
+    password: 'buero2013'
+  - name: back
+    groups: []
+    password: !vault |
+          $ANSIBLE_VAULT;1.1;AES256
+          63643330373231636537366333326630333265303265653933613835656262323863363038653234
+          3462653135633266373439626263356636646637643035340a653466356235346663626163306363
+          61313164643061306433643738643563303036646334376536626531383965303036386162393832
+          6631333038306462610a356535633265633563633962333137326533633834636331343562633765
+          3631
+  - name: buchholz
+    groups:
+      - buero
+      - intern
+      - verwaltung
+    password:
+  - name: schmidt
+    groups:
+      - intern
+      - verwaltung
+      - gubitz-partner
+    password: '20-schmidt_21%'
+  - name: kiel-nb1
+    groups:
+      - buero
+      - intern
+      - verwaltung
+      - gubitz-partner
+      - hoffmann-elberling
+    password: '20-note%book1-20'
+  - name: kiel-nb2
+    groups:
+      - buero
+      - intern
+      - verwaltung
+      - gubitz-partner
+      - hoffmann-elberling
+    password: '20-note%book2-20'
+  - name: chris
+    groups:
+      - buero
+      - intern
+      - verwaltung
+      - gubitz-partner
+      - hoffmann-elberling
+    password: !vault |
+          $ANSIBLE_VAULT;1.1;AES256
+          63643330373231636537366333326630333265303265653933613835656262323863363038653234
+          3462653135633266373439626263356636646637643035340a653466356235346663626163306363
+          61313164643061306433643738643563303036646334376536626531383965303036386162393832
+          6631333038306462610a356535633265633563633962333137326533633834636331343562633765
+          3631
+
+base_home: /home
+
+# remove_samba_users:
+#   - name: name1
+#   - name: name2
+#
+remove_samba_users: []
+
+samba_shares:
+  - name: profiles-RDP
+    comment: Users profiles RDP
+    path: /data/samba/profiles-RDP
+    guest_ok: !!str no
+    browseable: !!str no
+    valid_users: '%S'
+    file_create_mask: '600'
+    dir_create_mask: '700'
+
+  - name: Buero
+    path: /data/samba/shares/Buero
+    group_valid_users: intern
+    group_write_list: intern
+    file_create_mask: 664
+    dir_create_mask: 2775
+    vfs_object_recycle: true
+    recycle_path: recycle
+
+  - name: Verwaltung
+    path: /data/samba/shares/Verwaltung
+    group_valid_users: verwaltung
+    group_write_list: verwaltung
+    file_create_mask: 660
+    dir_create_mask: 2770
+    vfs_object_recycle: true
+    recycle_path: recycle
+
+  - name: Scans_schnell 
+    path: /data/samba/shares/Scans_schnell
+    group_valid_users: intern
+    group_write_list: intern
+    file_create_mask: '664'
+    dir_create_mask: 2775
+    vfs_object_recycle: true
+    recycle_path: recycle
+
+  - name: Hoffmann-Elberling
+    path: /data/samba/shares/Hoffmann-Elberling
+    group_valid_users: hoffmann-elberling
+    group_write_list: hoffmann-elberling
+    file_create_mask: '664'
+    dir_create_mask: 2775
+    vfs_object_recycle: true
+    recycle_path: recycle
+
+  - name: Gubitz-Partner
+    path: /data/samba/shares/Gubitz-Partner
+    group_valid_users: gubitz-partner
+    group_write_list: gubitz-partner
+    file_create_mask: '664'
+    dir_create_mask: 2775
+    vfs_object_recycle: true
+    recycle_path: recycle
+
+  - name: Gubitz-Backup
+    path: /data/samba/shares/Gubitz-Backup
+    group_valid_users: gubitz
+    group_write_list: gubitz
+    file_create_mask: 660
+    dir_create_mask: 2770
+    vfs_object_recycle: true
+    recycle_path: recycle
+
+  - name: WinServer2016-Backup
+    comment: WinServer2016-Backup on Fileserver
+    path: /data/samba/shares/WinServer2016-Backup
+    group_valid_users: {}
+    group_write_list: {}
+    file_create_mask: 664
+    dir_create_mask: 2775
+    guest_ok: !!str yes
+    vfs_object_recycle: true
+    recycle_path: {}
+
+  - name: Advoware-Backup
+    comment: Advoware-Backup (only read) on Fileserver
+    path: /data/samba/shares/Advoware-Backup
+    group_valid_users: back
+    group_write_list: back
+    file_create_mask: 664
+    dir_create_mask: 2775
+    guest_ok: !!str yes
+    vfs_object_recycle: true
+
+
+
 # ==============================