Distribution compatibility

~~~~~~~~~~~~~~~~~~~~~~~~~~

Role is compatible with the following distributions:

- Debian 11 (Bullseye)

Examples

~~~~~~~~

Here is an example configuration for setting-up LDAP server:

  license: BSD

  min_ansible_version: 2.9

  platforms:

    - name: Debian

      versions:

        - 11

  options:

    config-file: ../../.yamllint.yml

platforms:

  - name: client

    memory: 512

    cpus: 1

    provider_raw_config_args:

      - "customize ['modifyvm', :id, '--paravirtprovider', 'minimal']"

    interfaces:

      - auto_config: true

    interfaces:

      - auto_config: true

        ip: 192.168.56.32

        network_name: private_network

        type: static

provisioner:

  name: ansible

  playbooks:

    cleanup: cleanup.yml

  config_options:

    defaults:

          - "{{ item.fqdn }}"

      with_items:

        - name: parameters-mandatory-bullseye_ldap

          fqdn: parameters-mandatory

        - name: parameters-optional-bullseye_ldap

          fqdn: parameters-optional

    - name: Set-up link to generated X.509 material

      file:

        src: ".gimmecert"

        dest: "tests/data/x509"

        state: link

        group: root

        mode: 0644

        state: present

      with_dict:

        192.168.56.31: parameters-mandatory-bullseye

        192.168.56.32: parameters-optional-bullseye

- hosts: parameters-optional

  become: true

  tasks:

    - name: Set-up the hosts file

    Tests if LDAP directory permissions have been set-up correctly.

    """

    with host.sudo():

        permissions = host.run("ldapsearch -o ldif-wrap=no -H ldapi:/// -Q -LLL -Y EXTERNAL -b 'olcDatabase={1}mdb,cn=config' -s base olcAccess olcAccess")

olcAccess: {1}to attrs=userPassword,shadowLastChange by self write by anonymous auth by * none

olcAccess: {2}to dn.base="" by * read

olcAccess: {3}to * by self write by dn="cn=admin,dc=local" write by users read by * none"""

        assert permissions.rc == 0

        assert expected_permissions in permissions.stdout