Update initial_install/roles/freeipa_client/tasks/main.yml

2026-04-24 14:36:32 +00:00
parent 22deb79b46
commit becc21ff9e
1 changed files with 9 additions and 6 deletions
@@ -1,3 +1,4 @@
+```yaml
 ---
 - name: Install FreeIPA client packages
  ansible.builtin.package:
@@ -9,10 +10,9 @@
      - oddjob-mkhomedir
    state: present

- name: Set hostname
+- name: Set hostname (FQDN!)
  ansible.builtin.hostname:
-    name: "{{ inventory_hostname }}"
-
+    name: "{{ inventory_hostname }}.im.lab"

 - name: Enroll to FreeIPA
  ansible.builtin.command: >
@@ -20,8 +20,10 @@
    --domain=im.lab
    --realm=IPA.IM.LAB
    --server=ipa.im.lab
-    --hostname={{ inventory_hostname }}
+    --hostname={{ inventory_hostname }}.im.lab
    --mkhomedir
+    --principal=admin
+    --password={{ ipa_admin_password }}
    --unattended
  args:
    creates: /etc/ipa/default.conf
@@ -31,7 +33,7 @@
    servers: ["ipa.im.lab"]
    domain: im.lab
    realm: IPA.IM.LAB
-    hostname: "{{ inventory_hostname }}"
+    hostname: "{{ inventory_hostname }}.im.lab"
    no_krb5_offline_passwords: yes
  notify: Restart SSSD

@@ -39,4 +41,5 @@
  ansible.builtin.service:
    name: sssd
    state: started
-    enabled: true
+    enabled: true
+```