nicolas
/
Ansible-Playbooks
mirror of https://github.com/nmasse-itix/Ansible-Playbooks.git
1
0
Fork 0
Code Issues Releases Wiki Activity
All my Ansible Playbooks
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
112 KiB
 
 
 
 
 
 
Tree: 7f36f6e822
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '7f36f6e822'
${ noResults }
Ansible-Playbooks/OpenShift-Lab-Ansible-Playbook/roles/openshift-prereq/tasks/main.yml

103 lines
3.3 KiB
Raw Blame History

---
- name: This module has only been tested on RHEL 7.3 x64
assert:
that:
- "ansible_userspace_bits == '64'"
- "ansible_os_family == 'RedHat'"
- "ansible_distribution_version == '7.3'"
- name: First, disable any repos (using subscription-manager)
command: subscription-manager repos --disable="*"
tags: rpm
- name: Make sure mandatory repos are enabled
command: subscription-manager repos --enable {{ item }}
with_items:
- rhel-7-server-rpms
- rhel-7-server-optional-rpms
- rhel-7-server-extras-rpms
- rhel-7-server-ose-{{ openshift_version }}-rpms
tags: rpm
- name: Install wget
yum: name=wget state=installed
when: "'admin' in group_names" # Only on admin server
tags: rpm
- name: Install bridge-utils
yum: name=bridge-utils state=installed
when: "'admin' in group_names" # Only on admin server
tags: rpm
- name: Install nfs-utils
yum: name=nfs-utils state=installed
tags: rpm
- name: Install bash-completion
yum: name=bash-completion state=installed
when: "'admin' in group_names or 'masters' in group_names" # Only on admin or master server
tags: rpm
- name: Install NetworkManager
yum: name=NetworkManager state=installed
tags: rpm
- name: Install GIT
yum: name=git state=installed
when: "'admin' in group_names" # Only on admin server
tags: rpm
- name: Install net-tools
yum: name=net-tools state=installed
tags: rpm
- name: Install bind-utils
yum: name=bind-utils state=installed
tags: rpm
- name: Install iptables-services
yum: name=iptables-services state=installed
tags: rpm
- name: Disable firewalld
service: name=firewalld state=stopped enabled=no
- name: Enable iptables
service: name=iptables state=started enabled=yes
- name: Check for existing SSH Private Key on the admin server
stat: path=/home/{{ ansible_ssh_user }}/.ssh/id_rsa
register: key
when: "'admin' in group_names" # Only on admin server
tags: ssh-key
- name: Generate an SSH Private Key on the admin server
command: ssh-keygen -t rsa -b 2048 -f /home/{{ ansible_ssh_user }}/.ssh/id_rsa -q -N ''
become_user: "{{ ansible_ssh_user }}"
when: "'admin' in group_names and key.stat.exists == False" # Only on admin server and if key does not exists
tags: ssh-key
- name: Fetch the SSH Public Key of the admin server
fetch: src=/home/{{ ansible_ssh_user }}/.ssh/id_rsa.pub dest="{{ basedir }}/admin.pub" flat=yes
when: "'admin' in group_names" # Only on admin server
tags: ssh-key
- name: Add SSH Public key of the admin server to the authorized_keys of each server (including the admin server)
authorized_key:
key: "{{ lookup('file', basedir + '/admin.pub' ) }}"
user: "{{ ansible_ssh_user }}"
state: present
tags: ssh-key
- name: pre-authorize all ssh keys of the other machines
command: ssh -o StrictHostKeyChecking=no {{ item }} /bin/true
become: no # need to run the ssh command as user "redhat"
with_items: "{{ groups['lab'] }}"
when: "'admin' in group_names" # Only on admin server
tags: ssh-key
- name: Install atomic-openshift-utils (only on the admin node)
yum: name=atomic-openshift-utils state=installed
when: "'admin' in group_names" # Only on admin server
tags: rpm