diff options
| -rw-r--r-- | playbooks/groups/os-cluster.yml | 11 |
1 files changed, 11 insertions, 0 deletions
diff --git a/playbooks/groups/os-cluster.yml b/playbooks/groups/os-cluster.yml index fd0f2b04e..a167f7bc4 100644 --- a/playbooks/groups/os-cluster.yml +++ b/playbooks/groups/os-cluster.yml @@ -159,3 +159,14 @@ tasks: - name: enable nrpe for monitoring (noc01) iptables: action=insert chain=INPUT destination_port=5666 protocol=tcp source=10.5.126.41 state=present jump=ACCEPT + - name: Disallow users from provisioning + command: oadm policy remove-cluster-role-from-group self-provisioner system:authenticated system:authenticated:oauth + changed_when: false + - name: Allow some users cluster admin + command: oadm policy add-cluster-role-to-user cluster-admin {{item}} + with_items: + - puiterwijk + - kevin + - codeblock + - smooge + changed_when: false |