67 lines
1.8 KiB
YAML
67 lines
1.8 KiB
YAML
---
|
|
# Impostazioni tratte da https://www.pierreblazquez.com/2024/02/04/how-to-join-debian-12-to-an-active-directory-domain/
|
|
#
|
|
# Impostazione del servizio sssd
|
|
|
|
- name: Aggiunta suffisso di default
|
|
ansible.builtin.lineinfile:
|
|
path: /etc/sssd/sssd.conf
|
|
state: present
|
|
line: "default_domain_suffix = {{ domain }}"
|
|
insertafter: '^domains ='
|
|
notify: Restart sssd
|
|
|
|
- name: Disattivazione pac responder
|
|
ansible.builtin.lineinfile:
|
|
path: /etc/sssd/sssd.conf
|
|
state: present
|
|
line: implicit_pac_responder = false
|
|
insertafter: '^config_file_version = 2'
|
|
notify: Restart sssd
|
|
|
|
- name: Rimozione services
|
|
ansible.builtin.lineinfile:
|
|
path: /etc/sssd/sssd.conf
|
|
state: absent
|
|
line: '^services ='
|
|
notify: Restart sssd
|
|
|
|
- name: Aggiunta specifica cachedir per krb5
|
|
ansible.builtin.lineinfile:
|
|
path: /etc/sssd/sssd.conf
|
|
state: present
|
|
line: krb5_ccachedir = /tmp
|
|
insertafter: '^krb5_store_password_if_offline = True'
|
|
notify: Restart sssd
|
|
|
|
- name: Aggiunta ccname template per krb5
|
|
ansible.builtin.lineinfile:
|
|
path: /etc/sssd/sssd.conf
|
|
state: present
|
|
line: krb5_ccname_template = FILE:%d/.krb5cc_%U
|
|
insertafter: 'krb5_ccachedir = /tmp'
|
|
notify: Restart sssd
|
|
|
|
- name: Aggiunta full name format
|
|
ansible.builtin.lineinfile:
|
|
path: /etc/sssd/sssd.conf
|
|
state: present
|
|
line: full_name_format = %1$s
|
|
insertafter: '^ad_domain ='
|
|
notify: Restart sssd
|
|
|
|
- name: Aggiunta override homedir
|
|
ansible.builtin.lineinfile:
|
|
path: /etc/sssd/sssd.conf
|
|
state: present
|
|
line: override_homedir = /home/%u@%d
|
|
insertafter: '^fallback_homedir ='
|
|
notify: Restart sssd
|
|
|
|
- name: Aggiunta dydns_update, disabilitato
|
|
ansible.builtin.lineinfile:
|
|
path: /etc/sssd/sssd.conf
|
|
state: present
|
|
line: dydns_update = False
|
|
insertafter: '^fallback_homedir ='
|
|
notify: Restart sssd
|