-
Notifications
You must be signed in to change notification settings - Fork 0
/
02-procedure
56 lines (33 loc) · 1.17 KB
/
02-procedure
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
# Installation Guide
## Prerequisits
fresh install
add admin user and make sure ist accessible over ssh
configure 'hosts', set ansible_user and if needed pw
configure ldap and workerlist
connect to each machine in host, to test connection and add machine to known_hosts
test ansible connection with: ansible vms -m ping
## Playbookss
Then run these playbooks like so: ansible-playbook playbooks/<name>
- apt-upgrade.yml
- install_basics.yml
- install_ldap.yml << FIREWALL MUST BE CONFIGURED CORRECTLY!
- install_zfs_smb.yml
- add-user.yml
- install_apache.yml
TODO
proc wieder normal
procall -> ssh key muss passen
# Environment variables
Variables are set in ~/.ssh/environment
- `GFORTRAN_UNBUFFERED_ALL=1`
- `WORKER_OVERRIDE=10.106.242.190`
# REMEMBER:
- passwords of users can be changed by user with passwd, but sudo user have to use ldapsetpasswd <user> to set password of others
- for each user: ldapadduser, smbpasswd -a <user>, add mountentry to fstab & systemd file
# TODO:
- WARNING: not all ldappw are valid: '<>' will get escaped
- cronjob to mount -a
- smb, ldap firewall
- logrotate.conf
# TODO apache:
- apache starts as root -> 600 on conf with ldap pw