summaryrefslogtreecommitdiffstats
path: root/roles/ipa/server
diff options
context:
space:
mode:
authorPatrick Uiterwijk <puiterwijk@redhat.com>2016-12-20 08:06:46 +0000
committerPatrick Uiterwijk <puiterwijk@redhat.com>2016-12-20 08:06:46 +0000
commit2192db58db9d4c34fead83d2f4738cbf7cdd1ee3 (patch)
tree3bc4a54135534cca92964862600048c90a2dd37e /roles/ipa/server
parent5ced2ec87ac07cd80bd4e45fa562958a839cb8ac (diff)
downloadansible-2192db58db9d4c34fead83d2f4738cbf7cdd1ee3.tar.gz
ansible-2192db58db9d4c34fead83d2f4738cbf7cdd1ee3.tar.xz
ansible-2192db58db9d4c34fead83d2f4738cbf7cdd1ee3.zip
Allow id.fp.o use
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
Diffstat (limited to 'roles/ipa/server')
-rw-r--r--roles/ipa/server/files/use_id_fp_o.ldif4
-rw-r--r--roles/ipa/server/tasks/main.yml2
2 files changed, 6 insertions, 0 deletions
diff --git a/roles/ipa/server/files/use_id_fp_o.ldif b/roles/ipa/server/files/use_id_fp_o.ldif
new file mode 100644
index 000000000..e24ebf974
--- /dev/null
+++ b/roles/ipa/server/files/use_id_fp_o.ldif
@@ -0,0 +1,4 @@
+dn: cn=ipa-http-delegation,cn=s4u2proxy,cn=etc,dc=fedoraproject,dc=org
+changetype: modify
+add: memberPrincipal
+memberPrincipal: HTTP/id.fedoraproject.org@FEDORAPROJECT.ORG
diff --git a/roles/ipa/server/tasks/main.yml b/roles/ipa/server/tasks/main.yml
index 77821b77c..dba9915dd 100644
--- a/roles/ipa/server/tasks/main.yml
+++ b/roles/ipa/server/tasks/main.yml
@@ -203,6 +203,7 @@
with_items:
- grant_anonymous_replication_view.ldif
- grant_fas_sync.ldif
+ - use_id_fp_o.ldif
tags:
- ipa/server
- config
@@ -212,6 +213,7 @@
-f /root/ldif/{{item}}.ldif
with_items:
- grant_fas_sync
+ - use_id_fp_o
when: inventory_hostname.startswith("ipa01")
tags:
- ipa/server
generated by cgit (git 2.34.1) at 2026-01-06 11:15:31 +0000