freeipa / freeipa.ansible_freeipa / 1.11.1 / module / ipareplica_setup_kra Setup KRA Authors: Thomas Woerner (@t-woerner) preview | supported by communityfreeipa.ansible_freeipa.ipareplica_setup_kra (1.11.1) — module
Install with ansible-galaxy collection install freeipa.ansible_freeipa:==1.11.1
collections: - name: freeipa.ansible_freeipa version: 1.11.1
Setup KRA
realm: description: Kerberos realm name of the IPA deployment required: false type: str domain: description: Primary DNS domain of the IPA deployment required: false type: str server: description: Fully qualified name of IPA server to enroll to required: true type: str _top_dir: description: The installer _top_dir setting required: true type: str hostname: description: Fully qualified name of this host required: false type: str password: description: Admin user kerberos password required: false type: str setup_ca: description: Configure a dogtag CA required: false type: bool setup_dns: description: Configure bind with our zone required: false type: bool setup_kra: description: Configure a dogtag KRA required: false type: bool force_join: description: Force client enrollment even if already enrolled required: false type: bool _ca_enabled: description: The installer _ca_enabled setting required: false type: bool _ca_subject: description: The installer _ca_subject setting required: true type: str dm_password: description: Directory Manager password required: false type: str no_host_dns: default: false description: Do not use DNS for hostname lookup during installation required: false type: bool _kra_enabled: description: The installer _kra_enabled setting required: false type: bool ip_addresses: description: List of Master Server IP Addresses elements: str required: false type: list subject_base: description: The certificate subject base (default O=<realm-name>). RDNs are in LDAP order (most specific RDN first). required: true type: str _ca_host_name: description: The installer _ca_host_name setting required: false type: str _subject_base: description: The installer _subject_base setting required: true type: str ca_cert_files: description: List of files containing CA certificates for the service certificate files elements: str required: false type: list setup_adtrust: description: Configure AD trust capability required: false type: bool _kra_host_name: description: The installer _kra_host_name setting required: false type: str dirman_password: description: Directory Manager (master) password required: true type: str installer_ccache: description: The installer ccache setting required: true type: str dirsrv_cert_files: description: Files containing the Directory Server SSL certificate and private key elements: str required: false type: list _add_to_ipaservers: description: The installer _add_to_ipaservers setting required: true type: bool pki_config_override: description: Path to ini file with config overrides required: false type: str config_master_host_name: description: The config master_host_name setting required: true type: str