freeipa.ansible_freeipa.ipaservicedelegationrule (1.11.1) — module

Manage FreeIPA servicedelegationrule

Authors: Thomas Woerner (@t-woerner)

preview | supported by community

Install collection

Install with ansible-galaxy collection install freeipa.ansible_freeipa:==1.11.1


Add to requirements.yml

  collections:
    - name: freeipa.ansible_freeipa
      version: 1.11.1

Description

Manage FreeIPA servicedelegationrule and servicedelegationrule members

Usage examples

1
  • Hint
    Tasks should always be named using the name parameter.
# Ensure servicedelegationrule delegation-rule is present
- freeipa.ansible_freeipa.ipaservicedelegationrule:
    ipaadmin_password: SomeADMINpassword
    name: delegation-rule
1
  • Hint
    Tasks should always be named using the name parameter.
# Ensure servicedelegationrule delegation-rule member principal
# test/example.com is present
- freeipa.ansible_freeipa.ipaservicedelegationrule:
    ipaadmin_password: SomeADMINpassword
    name: delegation-rule
    principal: test/example.com
    action: member
1
  • Hint
    Tasks should always be named using the name parameter.
# Ensure servicedelegationrule delegation-rule member principal
# test/example.com is absent
- freeipa.ansible_freeipa.ipaservicedelegationrule:
    ipaadmin_password: SomeADMINpassword
    name: delegation-rule
    principal: test/example.com
    action: member
    state: absent
1
  • Hint
    Tasks should always be named using the name parameter.
# Ensure servicedelegationrule delegation-rule member target
# test/example.com is present
- freeipa.ansible_freeipa.ipaservicedelegationrule:
    ipaadmin_password: SomeADMINpassword
    name: delegation-rule
    target: delegation-target
    action: member
1
  • Hint
    Tasks should always be named using the name parameter.
# Ensure servicedelegationrule delegation-rule member target
# test/example.com is absent
- freeipa.ansible_freeipa.ipaservicedelegationrule:
    ipaadmin_password: SomeADMINpassword
    name: delegation-rule
    target: delegation-target
    action: member
    state: absent
1
  • Hint
    Tasks should always be named using the name parameter.
# Ensure servicedelegationrule delegation-rule is absent
- freeipa.ansible_freeipa.ipaservicedelegationrule:
    ipaadmin_password: SomeADMINpassword
    name: delegation-rule
    state: absent

Inputs

    
name:
    aliases:
    - cn
    description: The list of servicedelegationrule name strings.
    elements: str
    required: true
    type: list

state:
    choices:
    - present
    - absent
    default: present
    description: The state to ensure.
    required: false
    type: str

action:
    choices:
    - servicedelegationrule
    - member
    default: servicedelegationrule
    description: Work on servicedelegationrule or member level.
    required: false
    type: str

target:
    aliases:
    - servicedelegationtarget
    description: 'The list of service delegation targets.

      '
    elements: str
    required: false
    type: list

principal:
    description: 'The list of principals. A principal can be of the format:

      fqdn, fqdn@REALM, service/fqdn, service/fqdn@REALM, host/fqdn,

      host/fqdn@REALM, alias$, alias$@REALM, where fqdn and fqdn@REALM

      are host principals and the same as host/fqdn and host/fqd

      Host princpals are only usable with IPA versions 4.9.0 and up.

      '
    elements: str
    required: false
    type: list

ipaapi_context:
    choices:
    - server
    - client
    description: 'The context in which the module will execute. Executing in a

      server context is preferred. If not provided context will be

      determined by the execution environment.

      '
    required: false
    type: str

ipaadmin_password:
    description: The admin password.
    required: false
    type: str

ipaapi_ldap_cache:
    default: true
    description: Use LDAP cache for IPA connection.
    type: bool

ipaadmin_principal:
    default: admin
    description: The admin principal.
    type: str