-
Notifications
You must be signed in to change notification settings - Fork 33
/
Copy pathpki-tasks.txt
201 lines (199 loc) · 13.3 KB
/
pki-tasks.txt
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
playbook: ansible/pki-playbook.yml
play #1 (pki_server): install Dogtag PKI CA TAGS: []
tasks:
bootstrap : Check default route TAGS: [bootstrap]
bootstrap : Create some default route TAGS: [bootstrap]
bootstrap : Check for dnf command TAGS: [bootstrap, package-install]
bootstrap : Install python2 and deps for ansible modules TAGS: [bootstrap, network, package-install]
bootstrap : Auto select fastest DNF mirror TAGS: [bootstrap, package-install]
bootstrap : Refresh dnf cache TAGS: [bootstrap, network, package-install]
bootstrap : Gather facts TAGS: [bootstrap, setup]
bootstrap : Create directories in ipa_data_dir TAGS: [bootstrap]
bootstrap : Dummy (for ansible.skip_tags) TAGS: [dummy]
common : DNF or YUM? TAGS: [common]
common : Get nmcli device info TAGS: [common]
common : Set nmcli device info fact TAGS: [common]
common : Set SELinux state (aka make Dan happy or sad) TAGS: [common]
common : fix /etc/hosts TAGS: [common]
common : Set FQDN hostname TAGS: [common]
common : Get timedatectl information TAGS: [common]
common : Get timedatectl information TAGS: [common]
common : Set timezone to UTC TAGS: [common]
common : Disable dnf repos to prevent network access TAGS: [common]
common : Enable dnf repos TAGS: [common]
common : Auto select fastest DNF mirror TAGS: [common, package-install]
common : Enable yum for Fedora TAGS: [common, network, package-install]
common : Disable yum repos to prevent network access TAGS: [common]
common : Enable yum repos TAGS: [common]
common : Auto-select fastest yum mirror TAGS: [common, network, package-install]
common : Install gpg command for COPR / rpm_key TAGS: [common, network, package-copr, package-install]
common : Add GPG RPM keys for copr TAGS: [common, network, package-copr, package-install]
common : Enable extra COPRs TAGS: [common, network, package-copr, package-install]
common : upgrade all packages TAGS: [common, network, package-install, package-upgrade]
common : Create directory for custom RPMS TAGS: [common, custom-rpms]
common : Install rsync TAGS: [common, custom-rpms, network, package-install]
common : Synchronize RPMs TAGS: [common, custom-rpms]
common : find custom RPMs TAGS: [common, custom-rpms]
common : install custom RPMs TAGS: [common, custom-rpms]
common : install selinux tools TAGS: [common, network, package-install]
common : install firewalld TAGS: [firewall, network, package-install, pki]
common : check for firewalld TAGS: [common, firewall]
common : Enable and start firewalld TAGS: [common, firewall]
common : Open firewall ports elemental services TAGS: [common, firewall]
common : Install rng tools TAGS: [common, network, package-install]
common : Start the rngd service TAGS: [common]
common : tty-less sudo TAGS: [common]
bootstrap : Check default route TAGS: [bootstrap]
bootstrap : Create some default route TAGS: [bootstrap]
bootstrap : Check for dnf command TAGS: [bootstrap, package-install]
bootstrap : Install python2 and deps for ansible modules TAGS: [bootstrap, network, package-install]
bootstrap : Auto select fastest DNF mirror TAGS: [bootstrap, package-install]
bootstrap : Refresh dnf cache TAGS: [bootstrap, network, package-install]
bootstrap : Gather facts TAGS: [bootstrap, setup]
bootstrap : Create directories in ipa_data_dir TAGS: [bootstrap]
bootstrap : Dummy (for ansible.skip_tags) TAGS: [dummy]
common : DNF or YUM? TAGS: [common]
common : Get nmcli device info TAGS: [common]
common : Set nmcli device info fact TAGS: [common]
common : Set SELinux state (aka make Dan happy or sad) TAGS: [common]
common : fix /etc/hosts TAGS: [common]
common : Set FQDN hostname TAGS: [common]
common : Get timedatectl information TAGS: [common]
common : Get timedatectl information TAGS: [common]
common : Set timezone to UTC TAGS: [common]
common : Disable dnf repos to prevent network access TAGS: [common]
common : Enable dnf repos TAGS: [common]
common : Auto select fastest DNF mirror TAGS: [common, package-install]
common : Enable yum for Fedora TAGS: [common, network, package-install]
common : Disable yum repos to prevent network access TAGS: [common]
common : Enable yum repos TAGS: [common]
common : Auto-select fastest yum mirror TAGS: [common, network, package-install]
common : Install gpg command for COPR / rpm_key TAGS: [common, network, package-copr, package-install]
common : Add GPG RPM keys for copr TAGS: [common, network, package-copr, package-install]
common : Enable extra COPRs TAGS: [common, network, package-copr, package-install]
common : upgrade all packages TAGS: [common, network, package-install, package-upgrade]
common : Create directory for custom RPMS TAGS: [common, custom-rpms]
common : Install rsync TAGS: [common, custom-rpms, network, package-install]
common : Synchronize RPMs TAGS: [common, custom-rpms]
common : find custom RPMs TAGS: [common, custom-rpms]
common : install custom RPMs TAGS: [common, custom-rpms]
common : install selinux tools TAGS: [common, network, package-install]
common : install firewalld TAGS: [firewall, network, package-install, pki]
common : check for firewalld TAGS: [common, firewall]
common : Enable and start firewalld TAGS: [common, firewall]
common : Open firewall ports elemental services TAGS: [common, firewall]
common : Install rng tools TAGS: [common, network, package-install]
common : Start the rngd service TAGS: [common]
common : tty-less sudo TAGS: [common]
pki-389ds : install 389-DS LDAP server TAGS: [389ds, network, package-install]
pki-389ds : create 389-DS instance TAGS: [389ds]
pki : install pki-server packages and dependencies TAGS: [network, package-install, pki]
pki : Open Firewall for services TAGS: [firewall, pki]
pki : Open Firewall for ports TAGS: [firewall, pki]
pki-ca : install pki-ca package TAGS: [network, package-install, pkica]
pki-ca : Write CA config template TAGS: [pkica]
pki-ca : create CA TAGS: [ipa-install, pkica]
pki-ca : check for tomcat memory limit TAGS: [pki, pki-install]
pki-ca : limit tomcat memory TAGS: [ipa-install, pki]
pki-ca : restart tomcat TAGS: [pki, pki-install]
pki-ca : wait for tomcat TAGS: [pki, pki-install]
pki-ca : dump admin PKCS12 file to PEM file TAGS: [pki, pki-install]
pki-ca : fetch admin cert as /tmp/{{pki_instance_name}}_admin.pem TAGS: [pki, pki-install]
bootstrap : Check default route TAGS: [bootstrap]
bootstrap : Create some default route TAGS: [bootstrap]
bootstrap : Check for dnf command TAGS: [bootstrap, package-install]
bootstrap : Install python2 and deps for ansible modules TAGS: [bootstrap, network, package-install]
bootstrap : Auto select fastest DNF mirror TAGS: [bootstrap, package-install]
bootstrap : Refresh dnf cache TAGS: [bootstrap, network, package-install]
bootstrap : Gather facts TAGS: [bootstrap, setup]
bootstrap : Create directories in ipa_data_dir TAGS: [bootstrap]
bootstrap : Dummy (for ansible.skip_tags) TAGS: [dummy]
common : DNF or YUM? TAGS: [common]
common : Get nmcli device info TAGS: [common]
common : Set nmcli device info fact TAGS: [common]
common : Set SELinux state (aka make Dan happy or sad) TAGS: [common]
common : fix /etc/hosts TAGS: [common]
common : Set FQDN hostname TAGS: [common]
common : Get timedatectl information TAGS: [common]
common : Get timedatectl information TAGS: [common]
common : Set timezone to UTC TAGS: [common]
common : Disable dnf repos to prevent network access TAGS: [common]
common : Enable dnf repos TAGS: [common]
common : Auto select fastest DNF mirror TAGS: [common, package-install]
common : Enable yum for Fedora TAGS: [common, network, package-install]
common : Disable yum repos to prevent network access TAGS: [common]
common : Enable yum repos TAGS: [common]
common : Auto-select fastest yum mirror TAGS: [common, network, package-install]
common : Install gpg command for COPR / rpm_key TAGS: [common, network, package-copr, package-install]
common : Add GPG RPM keys for copr TAGS: [common, network, package-copr, package-install]
common : Enable extra COPRs TAGS: [common, network, package-copr, package-install]
common : upgrade all packages TAGS: [common, network, package-install, package-upgrade]
common : Create directory for custom RPMS TAGS: [common, custom-rpms]
common : Install rsync TAGS: [common, custom-rpms, network, package-install]
common : Synchronize RPMs TAGS: [common, custom-rpms]
common : find custom RPMs TAGS: [common, custom-rpms]
common : install custom RPMs TAGS: [common, custom-rpms]
common : install selinux tools TAGS: [common, network, package-install]
common : install firewalld TAGS: [firewall, network, package-install, pki]
common : check for firewalld TAGS: [common, firewall]
common : Enable and start firewalld TAGS: [common, firewall]
common : Open firewall ports elemental services TAGS: [common, firewall]
common : Install rng tools TAGS: [common, network, package-install]
common : Start the rngd service TAGS: [common]
common : tty-less sudo TAGS: [common]
bootstrap : Check default route TAGS: [bootstrap]
bootstrap : Create some default route TAGS: [bootstrap]
bootstrap : Check for dnf command TAGS: [bootstrap, package-install]
bootstrap : Install python2 and deps for ansible modules TAGS: [bootstrap, network, package-install]
bootstrap : Auto select fastest DNF mirror TAGS: [bootstrap, package-install]
bootstrap : Refresh dnf cache TAGS: [bootstrap, network, package-install]
bootstrap : Gather facts TAGS: [bootstrap, setup]
bootstrap : Create directories in ipa_data_dir TAGS: [bootstrap]
bootstrap : Dummy (for ansible.skip_tags) TAGS: [dummy]
common : DNF or YUM? TAGS: [common]
common : Get nmcli device info TAGS: [common]
common : Set nmcli device info fact TAGS: [common]
common : Set SELinux state (aka make Dan happy or sad) TAGS: [common]
common : fix /etc/hosts TAGS: [common]
common : Set FQDN hostname TAGS: [common]
common : Get timedatectl information TAGS: [common]
common : Get timedatectl information TAGS: [common]
common : Set timezone to UTC TAGS: [common]
common : Disable dnf repos to prevent network access TAGS: [common]
common : Enable dnf repos TAGS: [common]
common : Auto select fastest DNF mirror TAGS: [common, package-install]
common : Enable yum for Fedora TAGS: [common, network, package-install]
common : Disable yum repos to prevent network access TAGS: [common]
common : Enable yum repos TAGS: [common]
common : Auto-select fastest yum mirror TAGS: [common, network, package-install]
common : Install gpg command for COPR / rpm_key TAGS: [common, network, package-copr, package-install]
common : Add GPG RPM keys for copr TAGS: [common, network, package-copr, package-install]
common : Enable extra COPRs TAGS: [common, network, package-copr, package-install]
common : upgrade all packages TAGS: [common, network, package-install, package-upgrade]
common : Create directory for custom RPMS TAGS: [common, custom-rpms]
common : Install rsync TAGS: [common, custom-rpms, network, package-install]
common : Synchronize RPMs TAGS: [common, custom-rpms]
common : find custom RPMs TAGS: [common, custom-rpms]
common : install custom RPMs TAGS: [common, custom-rpms]
common : install selinux tools TAGS: [common, network, package-install]
common : install firewalld TAGS: [firewall, network, package-install, pki]
common : check for firewalld TAGS: [common, firewall]
common : Enable and start firewalld TAGS: [common, firewall]
common : Open firewall ports elemental services TAGS: [common, firewall]
common : Install rng tools TAGS: [common, network, package-install]
common : Start the rngd service TAGS: [common]
common : tty-less sudo TAGS: [common]
pki-389ds : install 389-DS LDAP server TAGS: [389ds, network, package-install]
pki-389ds : create 389-DS instance TAGS: [389ds]
pki : install pki-server packages and dependencies TAGS: [network, package-install, pki]
pki : Open Firewall for services TAGS: [firewall, pki]
pki : Open Firewall for ports TAGS: [firewall, pki]
pki-kra : install pki-kra package TAGS: [network, package-install, pkikra]
pki-kra : Write KRA config template TAGS: [pkikra]
pki-kra : create KRA TAGS: [ipa-install, pkikra]
pki-kra : check for tomcat memory limit TAGS: [pki, pki-install]
pki-kra : limit tomcat memory TAGS: [ipa-install, pki]
pki-kra : restart tomcat TAGS: [pki, pki-install]
pki-kra : wait for tomcat TAGS: [pki, pki-install]
pki-kra : dump admin PKCS12 file to PEM file TAGS: [pki, pki-install]
pki-kra : fetch admin cert as /tmp/{{pki_instance_name}}_admin.pem TAGS: [pki, pki-install]