2016-07-26 14:30:49 +12:00
|
|
|
---
|
|
|
|
|
# tasks file for common role
|
2022-11-01 23:09:42 +13:00
|
|
|
- include_tasks: networking.yml
|
2016-11-22 11:59:24 +13:00
|
|
|
|
2022-03-11 20:40:44 +13:00
|
|
|
- name: Ensure common packages (RHEL)
|
2023-10-06 06:58:18 +13:00
|
|
|
yum:
|
2022-03-11 20:40:44 +13:00
|
|
|
name: "{{ common_packages }}"
|
2016-11-22 11:59:24 +13:00
|
|
|
state: present
|
|
|
|
|
enablerepo: epel
|
2018-07-12 08:18:55 +12:00
|
|
|
when: ansible_distribution != 'OracleLinux'
|
|
|
|
|
tags: packages
|
|
|
|
|
|
2022-03-11 20:40:44 +13:00
|
|
|
- name: Ensure common packages (OracleLinux)
|
2018-07-12 08:18:55 +12:00
|
|
|
yum:
|
2022-03-11 20:40:44 +13:00
|
|
|
name: "{{ common_packages }}"
|
2018-07-12 08:18:55 +12:00
|
|
|
state: present
|
|
|
|
|
enablerepo: ol7_developer_EPEL
|
|
|
|
|
when: ansible_distribution == 'OracleLinux'
|
2016-11-22 11:59:24 +13:00
|
|
|
tags: packages
|
2023-10-06 06:58:18 +13:00
|
|
|
|
2018-06-27 12:42:57 +12:00
|
|
|
- name: Check if SELinux is installed
|
|
|
|
|
stat:
|
|
|
|
|
path: /etc/selinux/config
|
|
|
|
|
register: se
|
|
|
|
|
tags: security
|
|
|
|
|
|
2019-03-18 14:33:33 +13:00
|
|
|
# - name: SELinux Management
|
|
|
|
|
# block:
|
|
|
|
|
# - name: selinux | Ensure SELinux status
|
|
|
|
|
# selinux:
|
|
|
|
|
# state: disabled
|
|
|
|
|
# register: sestate
|
|
|
|
|
# - name: selinux | Message Output
|
|
|
|
|
# debug:
|
|
|
|
|
# msg: "SELinux {{ sestate.msg }}"
|
|
|
|
|
# when: sestate.changed
|
|
|
|
|
# when: se.stat.exists
|
|
|
|
|
# tags: security
|
2016-11-17 15:14:36 +13:00
|
|
|
|
2016-11-17 13:41:44 +13:00
|
|
|
- name: Create admin group
|
2022-03-11 22:02:17 +13:00
|
|
|
group: name={{ ADMIN_GROUP }} state=present
|
2016-11-17 13:41:44 +13:00
|
|
|
|
|
|
|
|
- name: Configure yum limit
|
2016-07-26 14:30:49 +12:00
|
|
|
lineinfile:
|
|
|
|
|
dest: /etc/yum.conf
|
|
|
|
|
regexp: "installonly_limit="
|
|
|
|
|
line: "installonly_limit=2"
|
|
|
|
|
tags: packages
|
|
|
|
|
|
2018-07-02 10:25:11 +12:00
|
|
|
- name: Ensure Helpers are present
|
|
|
|
|
copy:
|
2022-11-02 11:47:11 +13:00
|
|
|
src: "{{ helpers.src }}"
|
|
|
|
|
dest: "{{ helpers.dest }}"
|
2018-07-02 10:25:11 +12:00
|
|
|
mode: u+rwx,g+rx,o+rx
|
|
|
|
|
with_items:
|
|
|
|
|
- src: helpers/reload_scsi_devices
|
|
|
|
|
dest: /usr/local/bin/reload_scsi_devices
|
|
|
|
|
- src: helpers/reload_scsi_hosts
|
|
|
|
|
dest: /usr/local/bin/reload_scsi_hosts
|
2022-11-02 11:47:11 +13:00
|
|
|
loop_control:
|
|
|
|
|
loop_var: helpers
|
2023-10-06 06:58:18 +13:00
|
|
|
|
2016-09-08 10:57:55 +12:00
|
|
|
- name: Ensure Hostname is set
|
2023-10-06 06:58:18 +13:00
|
|
|
hostname:
|
2016-09-08 10:57:55 +12:00
|
|
|
name: "{{ inventory_hostname }}.{{ domain }}"
|
2023-10-06 07:10:53 +13:00
|
|
|
when: ansible_virtualization_type != "docker" and ansible_virtualization_type != "container"
|
2023-10-06 06:58:18 +13:00
|
|
|
|
2016-09-08 10:57:55 +12:00
|
|
|
- name: Change root password
|
2023-10-06 06:58:18 +13:00
|
|
|
user:
|
|
|
|
|
name: root
|
2022-03-11 20:16:09 +13:00
|
|
|
password: "{{ common_root_pwd | password_hash('sha512') }}"
|
2016-11-17 13:41:44 +13:00
|
|
|
changed_when: false
|
2020-11-27 11:39:25 +13:00
|
|
|
tags: rootpw
|
2016-11-17 13:41:44 +13:00
|
|
|
|
2022-11-01 23:09:42 +13:00
|
|
|
- include_tasks: grub.yml
|
|
|
|
|
- include_tasks: communication.yml
|
|
|
|
|
- include_tasks: motd.yml
|
