Puppet push LDAP authentiation

Linux, Scripting 1 Minute

Continue with my previous post of How to set up LDAP authentication in CentOS, I have made the Puppet be able to push it in my lab. Here is how it looks:

Selection_009

The manifest file and files can be downloaded from here.

class sys_ldap {

package { ‘openldap’:
ensure => installed,
}

package { ‘openldap-clients’:
ensure => installed,
require => Package[‘openldap’]
}

package { ‘sssd’:
ensure => installed,
}

file { ‘/etc/openldap/ldap.conf’:
ensure => file,
source => ‘puppet:///sys_ldap/ldap.conf’,
require => Package[‘openldap-clients’],
}

file { ‘/etc/openldap/certs/ldap-pub.pem’:
ensure => file,
source => ‘puppet:///sys_ldap/ldap-pub.pem’,
require => Package[‘openldap-clients’],
}

file { ‘/etc/sssd/sssd.conf’:
ensure => file,
source => ‘puppet:///sys_ldap/sssd.conf’,
mode => 600,
require => Package[‘sssd’],
}

exec { ‘/usr/sbin/authconfig –enablesssd –enablesssdauth –enableldap –enableldapauth –enablemkhomedir –ldapserver=ldaps://ldap.mylab.local –ldapbasedn=dc=mylab,dc=local –enablelocauthorize –enableldaptls –update’:
require => [ File[‘/etc/openldap/ldap.conf’], File[‘/etc/openldap/certs/ldap-pub.pem’], File[‘/etc/sssd/sssd.conf’], ],
}

}

Published by Jackie Chen

Published

Leave a Reply

Fill in your details below or click an icon to log in:

Gravatar
WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Cancel

Connecting to %s