puppet-wmdeit_ldap/README.md

72 lines
1.8 KiB
Markdown
Raw Normal View History

2020-08-25 20:55:31 +00:00
# puppet-wmdeit\_ldap
2020-08-18 07:19:40 +00:00
2020-08-18 16:04:47 +00:00
A puppet module to configure our OpenLDAP servers
2020-08-25 21:40:19 +00:00
You have to have a running puppetserver on FreeBSD.
Your clients have to Debian/Ubuntu.
Intall this module:
git clone https://srcsrv.wikimedia.de/WMDE/puppet-wmdeit\_ldap.git
ln -s puppet-wmdeit_ldap /path/to/pupet-environment/modules/wmdeit_ldap
2020-08-18 16:04:47 +00:00
To get it running:
2020-08-25 07:43:03 +00:00
puppet module install camptocamp-openldap
2020-08-18 16:04:47 +00:00
2020-08-25 20:55:31 +00:00
For lsc
2020-08-25 21:36:39 +00:00
2020-08-25 20:55:31 +00:00
puppet module install puppetlabs-java
puppet module install puppetlabs-apt
puppet generate types
2020-08-18 16:04:47 +00:00
For LAM
2020-08-25 07:44:27 +00:00
2020-08-25 07:43:03 +00:00
puppet module install puppetlabs-apache
puppet module install puppet-php
Examples:
2020-08-25 07:44:27 +00:00
2020-08-25 07:43:03 +00:00
class {"wmdeit_ldap":
serverid => 17,
simple_bind_tls => "0",
2020-08-25 07:46:12 +00:00
log_level => 4,
2020-08-25 20:55:31 +00:00
# password for cn=config
configdn => "nc=admin,nc=config",
configpw => "123",
# database with rootdn and rootpw
database => "dc=wikimedia,dc=de",
rootdn => "cn=admin,dc=wikimedia,dc=de",
rootpw => "123",
2020-08-25 07:43:03 +00:00
}
2020-08-25 21:35:42 +00:00
class{"wmdeit_ldap::lsc":
rootdn => "cn=admin,dc=wikimedia,dc=de",
rootpw => "123",
ldap => "ldap://localhost:389/dc=wikimedia,dc=de",
}
2020-08-25 07:43:03 +00:00
class {"wmdeit_ldap::lam":
master_password => "1234",
master_password_salt => "5678",
configs => {
wmde => {
2020-08-25 07:46:12 +00:00
password => "1234",
password_salt => "5678",
tree_suffix => "dc=wikimedia,dc=de",
admins => [
"cn=admin,dc=wikimedia,dc=de",
],
login_search_dn=>"cn=admin,dc=wikimedia,dc=de",
login_search_suffix=>"dc=wikimedia,dc=de",
login_search_password=>"123",
2020-08-25 12:36:39 +00:00
login_method=>"search" # or "list or search allowed",
server_url=>"ldap://localhost:389",
2020-08-25 07:43:03 +00:00
}
}
}
2020-08-18 16:04:47 +00:00