From e4cabaf2d5d5b53a165dc89ce1eee40de54f5b3f Mon Sep 17 00:00:00 2001
From: jakub <jakub@zacekj.cz>
Date: Fri, 24 Apr 2026 11:54:03 +0000
Subject: [PATCH] Add initial_install/playbook.yml

---
 initial_install/playbook.yml | 35 +++++++++++++++++++++++++++++++++++
 1 file changed, 35 insertions(+)
 create mode 100644 initial_install/playbook.yml

diff --git a/initial_install/playbook.yml b/initial_install/playbook.yml
new file mode 100644
index 0000000..d851619
--- /dev/null
+++ b/initial_install/playbook.yml
@@ -0,0 +1,35 @@
+---
+- name: Baseline system setup
+  hosts: all
+  become: true
+
+  roles:
+    - role: baseline_sudo
+      tags: sudo
+
+    - role: users
+      tags: users
+
+# ==============================
+# FREEIPA / SSSD (optional)
+# ==============================
+
+- name: FreeIPA client setup
+  hosts: all
+  become: true
+  tags: never,sssd
+
+  roles:
+    - role: freeipa_client
+
+# ==============================
+# SSH HARDENING (run last!)
+# ==============================
+
+- name: SSH hardening
+  hosts: all
+  become: true
+  tags: never,hardening
+
+  roles:
+    - role: ssh_hardening
\ No newline at end of file