it-team/lmn-client
3
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
317 commits 2 branches 0 tags 7.2 MiB
Commit graph

281 commits

Author SHA1 Message Date
Andreas B. Mundt
ebcfd88ef4 Restructuring/renaming DNS, DHCP, TFTP and netboot installer. 
Idea: The role 'dnsmasq' and a new role 'dns-dhcp-tftp' are
drop-in replacements and interchangeable. 'netboot-installer'
works indepently of the role chosen for DNS, DHCP and TFTP.
 2023-02-07 19:15:50 +01:00
Andreas B. Mundt
e55997a01c Draft implementation of sambox-client. 2023-02-07 19:15:50 +01:00
Andreas B. Mundt
e5ae626936 Implement LAN server sharing home directories via smb or sshfs. 2023-02-07 19:15:50 +01:00
Andreas B. Mundt
c976c69bed Move LDAP install/setup tasks into extra file. 2023-02-07 19:15:50 +01:00
Andreas B. Mundt
51f01858c1 Implement self signed certificate for slapd. 2023-02-07 19:15:50 +01:00
Andreas B. Mundt
318672dabc Modifications need to be applied immediately. 2023-02-07 19:15:50 +01:00
Andreas B. Mundt
6bdd207f1e Fix (not) reloading systemd service during installation. 2023-02-07 19:15:50 +01:00
Andreas B. Mundt
1b2707b474 Services are socket activated. 2023-02-07 19:15:50 +01:00
Andreas B. Mundt
d8ab7bc73e Add data base maintenance command. 2023-02-07 19:15:50 +01:00
Andreas B. Mundt
c06aa6e519 Fix ending up with no link on WAN interface. 2023-02-07 19:15:50 +01:00
Andreas B. Mundt
3059ba0cd6 Make sure ansible is installed. 2023-02-07 19:15:50 +01:00
Andreas B. Mundt
d1bc338ef9 Web server playbook. 2021-10-20 17:11:06 +02:00
Andreas B. Mundt
42d3fa4c25 Desktop fine tuning (compare netboot image). 2021-10-14 11:41:11 +02:00
Andreas B. Mundt
db1ed7ff30 Make sure gnome keyring-daemon is not started on sshfs. 2021-07-27 11:58:19 +02:00
Andreas B. Mundt
bc012494df SSSD is socket activated by now. 2021-07-05 14:11:56 +02:00
Andreas B. Mundt
156d932bf4 PAM-mount fails with this option set. 2021-07-05 10:55:10 +02:00
Andreas B. Mundt
6be0eefcaa Avoid mounting attempts when switching to 'root'. 2021-04-13 09:40:57 +02:00
Andreas B. Mundt
449b4ff653 Disable extra drive for now. 2021-02-08 10:59:01 +01:00
Andreas B. Mundt
25dd1161e4 Nicer ordering. 2021-02-08 10:57:43 +01:00
Andreas B. Mundt
de52a1eb33 Provide ssh hostkey. 2020-12-18 09:28:26 +01:00
Andreas B. Mundt
7238875d0c Further split roles. Mount user home on the clients (sshfs). 
The following roles are available:
 fvs-sssd
   Configures LDAP as ID and AUTH provider using sssd.
 fvs-mount
   Provides all private user directories on login with pam_mount.

Machines provided so far are:
  The server providing the home directory: fvs-home.yml
  A standard client: fvs-client.yml
 2020-12-18 09:28:26 +01:00
Andreas B. Mundt
77c8c26e38 Exclude local user from mounts. 2020-12-17 10:28:24 +01:00
Andreas B. Mundt
c3ca8606d6 Use variables and add mount options for more privacy. 2020-12-15 09:55:54 +01:00
Andreas B. Mundt
a37164d01a Split role in desktop and infrastructure parts. 2020-12-13 19:31:25 +01:00
Andreas B. Mundt
f764745db6 Fix check for disk partition. 2020-12-13 19:31:25 +01:00
Andreas B. Mundt
eab730e0ea Mount share directory on login. 2020-12-13 19:31:25 +01:00
Andreas B. Mundt
c4b6d86638 Allow to use wireshark for all users. 2020-12-08 19:40:50 +01:00
Andreas B. Mundt
4f73a9ead6 Use private groups for all LDAP users. 2020-12-08 19:39:06 +01:00
Andreas B. Mundt
e1cea0c0a3 Mount data disk next to homes. 2020-12-08 19:38:50 +01:00
Andreas B. Mundt
7828de3347 mkhome must happen before creating the mount point. More privacy. 2020-12-05 11:39:52 +01:00
Andreas B. Mundt
9c3d5e5f2e Fix booting from network. 2020-12-05 09:01:58 +01:00
Andreas B. Mundt
b5f1e4b66f Skip auto login user (kiosk mode), but keep useful tasks. 2020-12-04 19:22:22 +01:00
Andreas B. Mundt
8aec6687d7 Mount smb home next to local home directory. 2020-12-04 19:22:09 +01:00
Andreas B. Mundt
1c14ea3939 Add home page. Self-signed certificate. 2020-12-04 17:59:38 +01:00
Andreas B. Mundt
ddb8ff11d3 Init fvs branch with LDAP auth and mk-homedir. 2020-11-30 13:45:15 +01:00
Andreas B. Mundt
9264deb90d Better group handling with keyword 'none'. 2020-10-26 20:53:53 +01:00
Andreas B. Mundt
7e34ab8081 Services are socket activated. 2020-10-26 20:50:00 +01:00
Andreas B. Mundt
10010f5873 Updates for nextcloud. 2020-10-26 20:48:03 +01:00
Andreas B. Mundt
a412984c0b Modify proxy only if none given yet. 2020-03-17 20:30:23 +01:00
Andreas B. Mundt
c6ac5fec0f Fix firewalld configuration during installation. 2020-03-17 09:10:07 +01:00
Andreas B. Mundt
c78cff8200 Move kerberos integration to the end of tasks. 2020-03-16 20:01:33 +01:00
Andreas B. Mundt
8ca41be45a Do not overwrite existing APT configuration. 2020-03-16 19:37:54 +01:00
Andreas B. Mundt
6f0197f693 Restart slapd when keytab is available. HTTP service principal. 2020-03-16 19:36:19 +01:00
Andreas B. Mundt
f0c65d3cce Activate firewalld rules immediately. 2020-03-12 16:48:54 +01:00
Andreas B. Mundt
0b00ac560c Add clients to server's inventory file. 2020-03-12 16:47:22 +01:00
Andreas B. Mundt
118e9ceac6 Avoid line breaks when using xxd with long passwords. 2020-03-11 20:43:09 +01:00
Andreas B. Mundt
a175139745 Do not try to git clone from the installer chroot. 2020-03-11 19:46:30 +01:00
Andreas B. Mundt
a5f7059df0 Provide default variables for backup script. 2020-03-04 18:25:21 +01:00
Andreas B. Mundt
3eae7e731a Fix backup script for remote repositories. 2020-03-04 18:23:13 +01:00
Andreas B. Mundt
4d70971359 Make sure generated password do not start with dashes. 2020-02-29 20:28:57 +01:00