freeipa / freeipa.ansible_freeipa / 1.8.4 / module / ipatrust Manage FreeIPA Domain Trusts. Authors: Rob Verduijn preview | supported by communityfreeipa.ansible_freeipa.ipatrust (1.8.4) — module
Install with ansible-galaxy collection install freeipa.ansible_freeipa:==1.8.4
collections: - name: freeipa.ansible_freeipa version: 1.8.4
Manage FreeIPA Domain Trusts.
# add ad-trust - freeipa.ansible_freeipa.ipatrust: ipaadmin_password: SomeADMINpassword realm: ad.example.test trust_type: ad admin: Administrator password: SomeW1Npassword state: present
# delete ad-trust - freeipa.ansible_freeipa.ipatrust: ipaadmin_password: SomeADMINpassword realm: ad.example.test state: absent
admin: description: - Active Directory domain administrator required: false realm: description: - Realm name required: true state: choices: - present - absent default: present description: State to ensure required: true server: description: - Domain controller for the Active Directory domain (optional) required: false base_id: description: - First Posix ID of the range reserved for the trusted domain required: false two_way: choices: - 'true' - 'false' default: false description: - Establish bi-directional trust. By default trust is inbound one-way only. required: false external: choices: - 'true' - 'false' default: false description: - Establish external trust to a domain in another forest. - The trust is not transitive beyond the domain. required: false password: description: - Active Directory domain administrator's password required: false range_size: description: - Size of the ID range reserved for the trusted domain range_type: default: ipa-ad-trust description: - Type of trusted domain ID range, one of ipa-ad-trust, ipa-ad-trust-posix required: false trust_type: choices: - ad default: ad description: - Trust type (ad for Active Directory, default) required: false trust_secret: description: - Shared secret for the trust required: false ipaapi_context: choices: - server - client description: 'The context in which the module will execute. Executing in a server context is preferred. If not provided context will be determined by the execution environment. ' required: false ipaadmin_password: description: The admin password. required: false ipaapi_ldap_cache: default: true description: Use LDAP cache for IPA connection. type: bool ipaadmin_principal: default: admin description: The admin principal.