openstack/tripleo-quickstart-extras
Code Issues Proposed changes

Introduce a custom parameter to pass to ipa-server-install

Browse Source 
Sometimes it would be nice to be able to pass extra parameters
to 'ipa-server-install'. Let's introduce the 'ipa_server_install_params'
parameter which will be passed as extra arguments to the freeipa
installation.

One of the use cases is being able to disable dnssec validation
(via the '--no-dnssec-validation' parameter)

Change-Id: I0b8d985b6442a183251d1c2a47a91fc2f5d0f978
This commit is contained in:
Michele Baldessari 2018-05-29 13:45:49 +02:00
parent 5c01853b3d
commit 3dd1cdd6bf
2 changed files with 2 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
roles/freeipa-setup/README.md
View File

@ -19,6 +19,7 @@ Role Variables
- `provisioning_cidr`: <'{{ freeipa_ip }}/24'> -- If set, it adds the given CIDR to the - `provisioning_cidr`: <'{{ freeipa_ip }}/24'> -- If set, it adds the given CIDR to the
provisioning interface (which is hardcoded to eth1) provisioning interface (which is hardcoded to eth1)
- `supplemental_user`: <stack> The user which is used to deploy FreeIpa on the supplemental node - `supplemental_user`: <stack> The user which is used to deploy FreeIpa on the supplemental node
- `ipa_server_install_params`: <''> -- Additional parameters to pass to the ipa-server-install command
Example Playbook Example Playbook
---------------- ----------------

2
roles/freeipa-setup/templates/deploy_freeipa.sh.j2
View File

@ -45,7 +45,7 @@ ipa-server-install -U \
-a $CA_ADMIN_PASS \ -a $CA_ADMIN_PASS \
--hostname `hostname -f ` \ --hostname `hostname -f ` \
--ip-address=$IPA_SERVER_IP \ --ip-address=$IPA_SERVER_IP \
--setup-dns --auto-forwarders --auto-reverse --setup-dns --auto-forwarders --auto-reverse {{ ipa_server_install_params|default('') }}
## * Set iptables rules:: ## * Set iptables rules::