32.4. Assegurar a presença de gerentes membros em grupos anfitriões IDM usando Livros de Brincadeiras Ansíveis

Procedimento

1. Criar um arquivo de inventário, por exemplo inventory.file, e definir ipaserver no mesmo:

   [ipaserver]
   server.idm.example.com

2. Criar um arquivo de livro de jogo possível com as informações necessárias de gerenciamento do anfitrião e dos membros do grupo anfitrião:

   ---
   
   - name: Playbook to handle host group membership management
     hosts: ipaserver
     become: true
   
     tasks:
     - name: Ensure member manager user example_member is present for group_name
         ipahostgroup:
           ipaadmin_password: MySecret123
           name: group_name
           membermanager_user: example_member
   
     - name: Ensure member manager group project_admins is present for group_name
         ipahostgroup:
           ipaadmin_password: MySecret123
           name: group_name
           membermanager_group: project_admins

3. Execute o livro de brincadeiras:

   $ ansible-playbook -v -i path_to_inventory_directory/inventory.file path_to_playbooks_directory/add-member-managers-host-groups.yml

1. Acesse ipaserver como administrador:

   $ ssh admin@server.idm.example.com
   Password:
   [admin@server /]$

2. Mostrar informações sobre testhostgroup:

   ipaserver]$ ipa hostgroup-show group_name
     Host-group: group_name
     Member hosts: server.idm.example.com
     Member host-groups: testhostgroup2
     Membership managed by groups: project_admins
     Membership managed by users: example_member