| | |
| | | - name: Register bastion with IPA |
| | | shell: "/usr/sbin/ipa-client-install --domain=OPENTLC.COM -w {{ipa_host_password}} -N -U --mkhomedir --no-dns-sshfp --hostname={{bastion_public_dns_chomped}}" |
| | | when: "install_ipa_client" |
| | | - name: Register bastion with IPA |
| | | shell: "/usr/sbin/ipa-client-install --domain=OPENTLC.COM -w {{ipa_host_password}} -N -U --mkhomedir --no-dns-sshfp --hostname={{bastion_public_dns_chomped}}" |
| | | when: "install_ipa_client" |
| | | - lineinfile: |
| | | path: /etc/sudoers.d/opentlc-sudoers |
| | | state: present |
| | | create: true |
| | | line: '%opentlc-access ALL=(ALL) NOPASSWD: ALL' |
| | | validate: '/usr/sbin/visudo -cf %s' |
| | | |
| | | - name: Place Tower License from env_secret_vars on bastion |
| | | hosts: "{{ ('tag_' ~ env_type ~ '_' ~ guid ~ '_bastion') | replace('-', '_') }}" |