freeipa.ansible_freeipa.ipadnsconfig (1.11.1) — module

Manage FreeIPA dnsconfig

Authors: Rafael Guterres Jeffman (@rjeffman), Thomas Woerner (@t-woerner)

preview | supported by community

Install collection

Install with ansible-galaxy collection install freeipa.ansible_freeipa:==1.11.1


Add to requirements.yml

  collections:
    - name: freeipa.ansible_freeipa
      version: 1.11.1

Description

Manage FreeIPA dnsconfig

Usage examples

1
  • Hint
    Tasks should always be named using the name parameter.
# Ensure global DNS forward configuration, allowing PTR record synchronization.
- freeipa.ansible_freeipa.ipadnsconfig:
    ipaadmin_password: SomeADMINpassword
    forwarders:
      - ip_address: 8.8.4.4
      - ip_address: 2001:4860:4860::8888
        port: 53
    forward_policy: only
    allow_sync_ptr: yes
1
  • Hint
    Tasks should always be named using the name parameter.
# Ensure forwarder is absent.
- freeipa.ansible_freeipa.ipadnsconfig:
    ipaadmin_password: SomeADMINpassword
    forwarders:
      - ip_address: 2001:4860:4860::8888
        port: 53
    state: absent
    action: member
1
  • Hint
    Tasks should always be named using the name parameter.
# Disable PTR record synchronization.
- freeipa.ansible_freeipa.ipadnsconfig:
    ipaadmin_password: SomeADMINpassword
    allow_sync_ptr: no
1
  • Hint
    Tasks should always be named using the name parameter.
# Disable global forwarders.
- freeipa.ansible_freeipa.ipadnsconfig:
    ipaadmin_password: SomeADMINpassword
    forward_policy: none

Inputs

    
state:
    choices:
    - present
    - absent
    default: present
    description: 'The state to ensure. It can be one of `present` or `absent`.

      `absent` can only be used with `action: member` and `forwarders`.

      '
    type: str

action:
    choices:
    - member
    - dnsconfig
    default: dnsconfig
    description: 'Work on dnsconfig or member level. It can be one of `member` or

      `dnsconfig`. Only `forwarders` can be managed with `action: member`.

      '
    type: str

forwarders:
    description: The list of global DNS forwarders.
    elements: dict
    required: false
    suboptions:
      ip_address:
        description: The forwarder nameserver IP address list (IPv4 and IPv6).
        required: true
        type: str
      port:
        description: The port to forward requests to.
        required: false
        type: int
    type: list

allow_sync_ptr:
    description: Allow synchronization of forward (A, AAAA) and reverse (PTR) records.
    required: false
    type: bool

forward_policy:
    aliases:
    - forwardpolicy
    choices:
    - only
    - first
    - none
    description: Global forwarding policy. Set to "none" to disable any configured global
      forwarders.
    required: false
    type: str

ipaapi_context:
    choices:
    - server
    - client
    description: 'The context in which the module will execute. Executing in a

      server context is preferred. If not provided context will be

      determined by the execution environment.

      '
    required: false
    type: str

ipaadmin_password:
    description: The admin password.
    required: false
    type: str

ipaapi_ldap_cache:
    default: true
    description: Use LDAP cache for IPA connection.
    type: bool

ipaadmin_principal:
    default: admin
    description: The admin principal.
    type: str