This roles installs the OpenLDAP server on the target machine. It has the option to enable/disable SSL by setting it in defaults or overriding it.
This role requires Ansible 1.4 or higher, and platform requirements are listed in the metadata file.
The variables that can be passed to this role and a brief description about them are as follows:
openldap_server_hostname: ldap.example.com # The hostname for ldap
openldap_server_domain_name: example.com # The domain prefix for ldap
openldap_server_rootpw: passme # This is the password for admin for openldap
openldap_server_enable_ssl: true # To enable/disable ssl for the ldap
openldap_server_country: US # The self signed ssl certificate parameters
openldap_server_ca_cert_url: # Download URL CA certificate bundle
openldap_server_state: Oregon
openldap_server_location: Portland
openldap_server_organization: IT
openldap_server_tlscacertificatefile: /etc/openldap/certs/cacert.pem
openldap_server_certificate_expiry_days: 365
openldap_server_ssl_keylength: 2048 # SSL Keylength
openldap_server_ssl_private_key: # Private Key
openldap_server_ssl_certificate: # SSL Certificate
-
Configure an OpenLDAP server without SSL:
- hosts: all
sudo: true
roles:
- role: bennojoy.openldap_server openldap_server_domain_name: example.com openldap_server_rootpw: passme openldap_server_enable_ssl: false
- hosts: all
sudo: true
roles:
-
Configure an OpenLDAP server with SSL:
- hosts: all
sudo: true
roles:
- role: bennojoy.openldap_server openldap_server_domain_name: example.com openldap_server_rootpw: passme openldap_server_enable_ssl: true openldap_server_country: US openldap_server_state: Oregon openldap_server_location: Portland openldap_server_organization: IT
- hosts: all
sudo: true
roles:
None
BSD
Benno Joy