[slapd][ldap] Configuration CRANS

group_vars/all/vars.yaml

@@ -16,28 +16,35 @@ ansible_header: |
 # Crans subnets
 adm_subnet: 10.231.136.0/24
 
-# Role rsync-client
+# # Role rsync-client
-to_backup:
+# to_backup:
-  - {
+#   - {
-  name: "var",
+#   name: "var",
-  path: "/var",
+#   path: "/var",
-  auth_users: "backupcrans",
+#   auth_users: "backupcrans",
-  secrets_file: "/etc/rsyncd.secrets",
+#   secrets_file: "/etc/rsyncd.secrets",
-  hosts_allow: ["zephir.adm.crans.org", "10.231.136.6"],
+#   hosts_allow: ["zephir.adm.crans.org", "10.231.136.6"],
-  }
+#   }
-  - {
+#   - {
-  name: "slash",
+#   name: "slash",
-  path: "/",
+#   path: "/",
-  auth_users: "backupcrans",
+#   auth_users: "backupcrans",
-  secrets_file: "/etc/rsyncd.secrets",
+#   secrets_file: "/etc/rsyncd.secrets",
-  hosts_allow: ["zephir.adm.crans.org", "10.231.136.6"],
+#   hosts_allow: ["zephir.adm.crans.org", "10.231.136.6"],
-  }
+#   }
-
+#
-re2o:
+# re2o:
-  server: re2o.adm.crans.org
+#   server: re2o.adm.crans.org
-  service_user: "{{ vault_re2o_service_user }}"
+#   service_user: "{{ vault_re2o_service_user }}"
-  service_password: "{{ vault_re2o_service_password }}"
+#   service_password: "{{ vault_re2o_service_password }}"
-
+#
-
+#
-# global server definitions
+# # global server definitions
-mail_server: smtp.adm.crans.org
+# mail_server: smtp.adm.crans.org
+glob_ldap:
+  servers:
+    - 172.16.10.1
+    - 172.16.10.11
+    - 172.16.10.12
+    - 172.16.10.13
+  base: 'dc=crans,dc=org'

group_vars/slapd.yml

@@ -0,0 +1,6 @@
+---
+
+glob_slapd:
+  master_ip: 172.16.10.1
+  replication_credentials: "{{ vault_ldap_replication_credentials }}"
+

host_vars/daniel.adm.crans.org.yml

@@ -1,7 +1,8 @@
 ---
-ldap:
+loc_slapd:
   ip: 172.16.10.12
   replica: true
   replica_rid: 2
-  master_ip: 172.16.10.1
+
-  replication_credentials: "{{ vault_ldap_replication_credentials }}"
+loc_ldap:
+  local: false