roles/server/ldap-server/tasks/main.yml

   1 #####################################
   2 ### someone's ansible provisioner ###
   3 #####################################
   4 # Part of: https://git.somenet.org/root/pub/somesible.git
   5 # 2017-2025 by someone <someone@somenet.org>
   6 #
   7 ---
   8 - name: install openldap-server
   9   apt:
  10     pkg:
  11     - ldap-server
  12     - ldap-utils
  13     - ldapvi
  14     state: present
  15     policy_rc_d: 101
  16   tags: "online"
  17   ignore_errors: "{{ignore_online_errors | bool}}"
  18
  19
  20 - name: copy slapd.conf
  21   copy:
  22     src: "{{item}}"
  23     dest: "/etc/ldap/slapd.conf"
  24     mode: 0640
  25     owner: "openldap"
  26     group: "openldap"
  27   with_first_found:
  28     - "{{lookup('env','PWD')}}/host_files/{{inventory_hostname}}/{{role_name}}/slapd.conf"
  29     - "{{lookup('env','PWD')}}/group_files/{{group_files_group}}/{{role_name}}/slapd.conf"
  30     - "{{lookup('env','PWD')}}/group_files/all/{{role_name}}/slapd.conf"
  31     - "default/slapd.conf"
  32   notify: restart slapd.service
  33
  34
  35 - name: symlink /etc/ldap/slapd.d to /dev/null
  36   file:
  37     path: "/etc/ldap/slapd.d"
  38     state: absent
  39
  40
  41 - name: enable and start slapd.service
  42   include_role: name="base/systemd/enable-and-start"
  43   vars:
  44     service_name: slapd.service