/ home / freeipa / freeipa.ansible_freeipa / 1.11.1 / module / iparole

freeipa.ansible_freeipa.iparole (1.11.1) — module

Manage FreeIPA role

Authors: Rafael Guterres Jeffman (@rjeffman), Thomas Woerner (@t-woerner)

preview | supported by community

Install collection

Install with ansible-galaxy collection install freeipa.ansible_freeipa:==1.11.1

Add to requirements.yml

  collections:
    - name: freeipa.ansible_freeipa
      version: 1.11.1

Description

Manage FreeIPA role

Usage examples

Scanned by Steampunk Spotter

- name: Ensure a role named `somerole` is present.
  freeipa.ansible_freeipa.iparole:
    ipaadmin_password: SomeADMINpassword
    name: somerole

Scanned by Steampunk Spotter

- name: Ensure user `pinky` is a memmer of role `somerole`.
  freeipa.ansible_freeipa.iparole:
    ipaadmin_password: SomeADMINpassword
    name: somerole
    user:
    - pinky
    action: member

Scanned by Steampunk Spotter

- name: Ensure a role named `somerole` is absent.
  freeipa.ansible_freeipa.iparole:
    ipaadmin_password: SomeADMINpassword
    name: somerole
    state: absent

Inputs

    
host:
    description: List of hosts.
    elements: str
    required: false
    type: list

name:
    aliases:
    - cn
    description: The list of role name strings.
    elements: str
    required: true
    type: list

user:
    description: List of users.
    elements: str
    required: false
    type: list

group:
    description: List of groups.
    elements: str
    required: false
    type: list

state:
    choices:
    - present
    - absent
    - renamed
    default: present
    description: The state to ensure.
    required: false
    type: str

action:
    choices:
    - role
    - member
    default: role
    description: Work on role or member level.
    required: false
    type: str

rename:
    aliases:
    - new_name
    description: Rename the role object.
    required: false
    type: str

service:
    description: List of services.
    elements: str
    required: false
    type: list

hostgroup:
    description: List of hostgroups.
    elements: str
    required: false
    type: list

privilege:
    description: List of privileges
    elements: str
    required: false
    type: list

description:
    description: A description for the role.
    required: false
    type: str

ipaapi_context:
    choices:
    - server
    - client
    description: 'The context in which the module will execute. Executing in a

      server context is preferred. If not provided context will be

      determined by the execution environment.

      '
    required: false
    type: str

ipaadmin_password:
    description: The admin password.
    required: false
    type: str

ipaapi_ldap_cache:
    default: true
    description: Use LDAP cache for IPA connection.
    type: bool

ipaadmin_principal:
    default: admin
    description: The admin principal.
    type: str