From 1ab1164133cb1ec241e5f09dfc3376c1af69e98b Mon Sep 17 00:00:00 2001 From: Frank Brehm Date: Thu, 12 Dec 2024 18:20:26 +0100 Subject: [PATCH] Adding inventory files for other LDAP clusters --- inventory/dpx-ldap-prd.yaml | 72 ++++++++++++++++++++++++++++++++++++ inventory/dpx-ldap-test.yaml | 59 +++++++++++++++++++++++++++++ inventory/spk-ldap-live.yaml | 42 +++++++++++++++++++++ 3 files changed, 173 insertions(+) create mode 100644 inventory/dpx-ldap-prd.yaml create mode 100644 inventory/dpx-ldap-test.yaml create mode 100644 inventory/spk-ldap-live.yaml diff --git a/inventory/dpx-ldap-prd.yaml b/inventory/dpx-ldap-prd.yaml new file mode 100644 index 0000000..c57fdf4 --- /dev/null +++ b/inventory/dpx-ldap-prd.yaml @@ -0,0 +1,72 @@ +--- +all: + children: + ldap_servers: + hosts: + prd-ds11.pixelpark.com: + replica_id: 1 + slapd_instance: prd-ds11 + ldap_uri: 'ldaps://prd-ds11.pixelpark.com' + prd-ds12.pixelpark.com: + replica_id: 2 + slapd_instance: prd-ds12 + ldap_uri: 'ldaps://prd-ds12.pixelpark.com' + prd-ds13.pixelpark.com: + replica_id: 3 + slapd_instance: prd-ds13 + ldap_uri: 'ldaps://prd-ds13.pixelpark.com' + vars: + suffix: 'o=isp' + dirsrv_root_dn: 'cn=admin' + dirsrv_root_passwd_file: '/root/.private/dirsrv-mngr-pwd-wonl.txt' + replication_manager_dn: 'cn=Replication Manager,cn=config' + replication_manager_password_file: '/root/.private/dirserv-repl-mngr-pwd.txt' + replication_manager_idle_timeout: 0 + ldaps_validate_certs: false + ds389_plugin_attr_uniq_purge: false + ds389_plugin_attr_uniq_attributes: + 'uid': + across_all_subtrees: false + subtrees: + - 'o=bmas,o=isp' + - 'o=bmf,o=isp' + - 'o=BMWA,o=isp' + - 'o=bmwi,o=isp' + - 'o=bmwi-unternehmergeist,o=isp' + - 'o=cosTemplates,o=isp' + - 'o=Internet,o=isp' + - 'o=mbvd,o=isp' + - 'o=pfizer,o=isp' + - 'o=Pixelpark,o=isp' + - 'o=publicis,o=isp' + - 'o=PuF,o=isp' + - 'o=Radeberger,o=isp' + - 'o=sirona,o=isp' + - 'o=tov,o=isp' + 'gidNumber': + subtrees: + - 'o=isp' + 'mail': + subtrees: + - 'o=isp' + 'uidNumber': + subtrees: + - 'o=isp' + + # Tempporary + # ds389_logging_config: false + # ds389_plugin_memberof_config: false + # ds389_plugin_referint_config: false + # ds389_plugin_attr_uniq_config: false + # ds389_plugin_account_policy_config: false + + haproxy_servers: + hosts: + prd-ds-hap11.pixelpark.com: {} + prd-ds-hap12.pixelpark.com: {} + vars: + ansible_user: root + haproxy_backend_name: 'be-ldap-prod' + + +# vim: filetype=yaml diff --git a/inventory/dpx-ldap-test.yaml b/inventory/dpx-ldap-test.yaml new file mode 100644 index 0000000..c1118ff --- /dev/null +++ b/inventory/dpx-ldap-test.yaml @@ -0,0 +1,59 @@ +--- +all: + children: + ldap_servers: + hosts: + test-ds01.pixelpark.com: + replica_id: 1 + slapd_instance: test-ds01 + ldap_uri: 'ldaps://test-ds01.pixelpark.com' + test-ds02.pixelpark.com: + replica_id: 2 + slapd_instance: test-ds02 + ldap_uri: 'ldaps://test-ds02.pixelpark.com' + test-ds03.pixelpark.com: + replica_id: 3 + slapd_instance: test-ds03 + ldap_uri: 'ldaps://test-ds03.pixelpark.com' + vars: + suffix: 'dc=pixelpark,dc=net' + dirsrv_root_dn: 'cn=admin' + dirsrv_root_passwd_file: '/root/.private/dirsrv-mngr-pwd-wonl.txt' + replication_manager_dn: 'cn=Replication Manager,cn=config' + replication_manager_password_file: '/root/.private/dirserv-repl-mngr-pwd.txt' + replication_manager_idle_timeout: 0 + ldaps_validate_certs: false + # ds389_plugin_attr_uniq_purge: false + ds389_plugin_attr_uniq_attributes: + 'uid': + across_all_subtrees: false + subtrees: + - 'ou=Betrieb,dc=pixelpark,dc=net' + - 'ou=Management,dc=pixelpark,dc=net' + 'gidNumber': + subtrees: + - 'dc=pixelpark,dc=net' + 'mail': + subtrees: + - 'dc=pixelpark,dc=net' + 'uidNumber': + subtrees: + - 'dc=pixelpark,dc=net' + + # Tempporary + # ds389_logging_config: false + # ds389_plugin_memberof_config: false + # ds389_plugin_referint_config: false + # ds389_plugin_attr_uniq_config: false + # ds389_plugin_account_policy_config: false + + haproxy_servers: + hosts: + test-ds-hap01.pixelpark.com: {} + test-ds-hap02.pixelpark.com: {} + vars: + ansible_user: root + haproxy_backend_name: 'be-ldap-test1' + + +# vim: filetype=yaml diff --git a/inventory/spk-ldap-live.yaml b/inventory/spk-ldap-live.yaml new file mode 100644 index 0000000..866a638 --- /dev/null +++ b/inventory/spk-ldap-live.yaml @@ -0,0 +1,42 @@ +--- +all: + children: + ldap_servers: + hosts: + live-u02-ds01-spk.spk.pixelpark.net: + replica_id: 1 + slapd_instance: live-u02-ds01-spk + ldap_uri: 'ldaps://live-u02-ds01-spk.spk.pixelpark.net' + live-u02-ds02-spk.spk.pixelpark.net: + replica_id: 2 + slapd_instance: live-u02-ds02-spk + ldap_uri: 'ldaps://live-u02-ds02-spk.spk.pixelpark.net' + haproxy_servers: + hosts: + live-ldap-hap01.spk.pixelpark.net: {} + live-ldap-hap02.spk.pixelpark.net: {} + vars: + ansible_user: root + suffix: 'dc=spk,dc=pixelpark,dc=net' + dirsrv_root_dn: 'cn=admin' + dirsrv_root_passwd_file: '/root/.private/dirsrv-mngr-pwd-wonl.txt' + replication_manager_dn: 'cn=Replication Manager,cn=config' + replication_manager_password_file: '/root/.private/dirserv-repl-mngr-pwd.txt' + replication_manager_idle_timeout: 0 + haproxy_backend_name: 'be-live-ldap' + ldaps_validate_certs: false + ds389_plugin_attr_uniq_config: false + ds389_plugin_attr_uniq_purge: false + ds389_plugin_attr_uniq_attributes: + 'uid': + across_all_subtrees: false + subtrees: + - 'dc=spk,dc=pixelpark,dc=net' + ds389_plugin_account_policy_config: false + + # Temporary + # ds389_logging_config: false + # ds389_plugin_memberof_config: false + # ds389_plugin_referint_config: false + +# vim: filetype=yaml -- 2.39.5