it-team/lmn-client
3
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Commit graph

  • d8ab7bc73e Add data base maintenance command. Andreas B. Mundt 2021-04-01 22:05:55 +02:00
  • c06aa6e519 Fix ending up with no link on WAN interface. Andreas B. Mundt 2021-04-01 22:01:46 +02:00
  • 3059ba0cd6 Make sure ansible is installed. Andreas B. Mundt 2021-04-01 21:59:48 +02:00
  • 8d357397f6 Prepare shared directory for ISO images. Andreas B. Mundt 2022-03-13 10:27:57 +01:00
  • 98cfd86b01 Add packages. Andreas B. Mundt 2022-03-13 10:27:15 +01:00
  • d1bc338ef9 Web server playbook. Andreas B. Mundt 2021-10-19 20:01:20 +02:00
  • 080356bfa4 Clean up FvS playbooks and add VM server playbook. Andreas B. Mundt 2021-10-14 19:13:03 +02:00
  • 42d3fa4c25 Desktop fine tuning (compare netboot image). Andreas B. Mundt 2021-10-13 12:33:20 +02:00
  • e2abbb114b Fix for buster ansible release. Andreas B. Mundt 2021-07-27 12:13:40 +02:00
  • db1ed7ff30 Make sure gnome keyring-daemon is not started on sshfs. Andreas B. Mundt 2021-07-27 11:54:54 +02:00
  • bc012494df SSSD is socket activated by now. Andreas B. Mundt 2021-07-05 14:11:56 +02:00
  • 156d932bf4 PAM-mount fails with this option set. Andreas B. Mundt 2021-07-05 10:53:05 +02:00
  • cbc1e62659 Disable backports for bullseye. Andreas B. Mundt 2021-07-05 10:29:20 +02:00
  • 6be0eefcaa Avoid mounting attempts when switching to 'root'. Andreas B. Mundt 2021-04-13 09:40:57 +02:00
  • 449b4ff653 Disable extra drive for now. Andreas B. Mundt 2021-02-08 10:59:01 +01:00
  • 25dd1161e4 Nicer ordering. Andreas B. Mundt 2021-02-08 10:57:43 +01:00
  • de52a1eb33 Provide ssh hostkey. Andreas B. Mundt 2020-12-18 08:52:25 +01:00
  • 7238875d0c Further split roles. Mount user home on the clients (sshfs). Andreas B. Mundt 2020-12-18 08:14:43 +01:00
  • 77c8c26e38 Exclude local user from mounts. Andreas B. Mundt 2020-12-17 10:28:24 +01:00
  • c3ca8606d6 Use variables and add mount options for more privacy. Andreas B. Mundt 2020-12-15 09:55:54 +01:00
  • a37164d01a Split role in desktop and infrastructure parts. Andreas B. Mundt 2020-12-11 11:58:23 +01:00
  • f764745db6 Fix check for disk partition. Andreas B. Mundt 2020-12-09 12:08:00 +01:00
  • eab730e0ea Mount share directory on login. Andreas B. Mundt 2020-12-09 09:27:44 +01:00
  • c4b6d86638 Allow to use wireshark for all users. Andreas B. Mundt 2020-12-08 13:16:00 +01:00
  • 4f73a9ead6 Use private groups for all LDAP users. Andreas B. Mundt 2020-12-08 13:08:26 +01:00
  • e1cea0c0a3 Mount data disk next to homes. Andreas B. Mundt 2020-12-05 18:16:43 +01:00
  • 7828de3347 mkhome must happen before creating the mount point. More privacy. Andreas B. Mundt 2020-12-05 11:07:43 +01:00
  • 9c3d5e5f2e Fix booting from network. Andreas B. Mundt 2020-12-05 08:53:29 +01:00
  • b5f1e4b66f Skip auto login user (kiosk mode), but keep useful tasks. Andreas B. Mundt 2020-12-04 18:40:07 +01:00
  • 8aec6687d7 Mount smb home next to local home directory. Andreas B. Mundt 2020-12-04 18:01:41 +01:00
  • 1c14ea3939 Add home page. Self-signed certificate. Andreas B. Mundt 2020-12-04 17:59:38 +01:00
  • 3c87bcbeee Add package selection. Andreas B. Mundt 2020-12-02 13:03:44 +01:00
  • ddb8ff11d3 Init fvs branch with LDAP auth and mk-homedir. Andreas B. Mundt 2020-11-28 09:23:44 +01:00
  • 9264deb90d Better group handling with keyword 'none'. Andreas B. Mundt 2020-10-26 20:53:53 +01:00
  • 7e34ab8081 Services are socket activated. Andreas B. Mundt 2020-10-26 20:50:00 +01:00
  • 10010f5873 Updates for nextcloud. Andreas B. Mundt 2020-10-26 20:48:03 +01:00
  • a412984c0b Modify proxy only if none given yet. Andreas B. Mundt 2020-03-17 20:30:23 +01:00
  • c6ac5fec0f Fix firewalld configuration during installation. Andreas B. Mundt 2020-03-17 08:52:06 +01:00
  • c78cff8200 Move kerberos integration to the end of tasks. Andreas B. Mundt 2020-03-16 19:43:42 +01:00
  • 8ca41be45a Do not overwrite existing APT configuration. Andreas B. Mundt 2020-03-16 19:37:54 +01:00
  • 6f0197f693 Restart slapd when keytab is available. HTTP service principal. Andreas B. Mundt 2020-03-16 19:36:19 +01:00
  • f0c65d3cce Activate firewalld rules immediately. Andreas B. Mundt 2020-03-12 16:48:54 +01:00
  • 0b00ac560c Add clients to server's inventory file. Andreas B. Mundt 2020-03-12 16:47:22 +01:00
  • 118e9ceac6 Avoid line breaks when using xxd with long passwords. Andreas B. Mundt 2020-03-11 20:43:09 +01:00
  • a175139745 Do not try to git clone from the installer chroot. Andreas B. Mundt 2020-03-11 19:46:30 +01:00
  • a5f7059df0 Provide default variables for backup script. Andreas B. Mundt 2020-03-04 18:25:21 +01:00
  • 3eae7e731a Fix backup script for remote repositories. Andreas B. Mundt 2020-03-04 18:23:13 +01:00
  • 4d70971359 Make sure generated password do not start with dashes. Andreas B. Mundt 2020-02-29 20:28:57 +01:00
  • a6feab0e38 Minor improvements, nextcloud maintenance task. Andreas B. Mundt 2020-02-29 18:26:20 +01:00
  • df0afe3b71 Add default NIC to public zone in firewalld. Andreas B. Mundt 2020-02-25 19:56:14 +01:00
  • 849045bfae Add app update task. Andreas B. Mundt 2020-01-26 11:27:29 +01:00
  • f1008d778f Prepare database after (succussful) download only. Andreas B. Mundt 2020-01-26 10:37:29 +01:00
  • 8c72a4bec7 Implement direct download during installation. Andreas B. Mundt 2020-01-24 19:55:36 +01:00
  • 456f5c9870 Integrate firewalld, minor fixes/improvements. Andreas B. Mundt 2020-01-23 16:01:15 +01:00
  • 29fb8f9420 Move extra_pkgs*-handling to the up2date-debian role. Andreas B. Mundt 2020-01-21 20:50:18 +01:00
  • e1766a7cfd Prune backups automatically over time. Andreas B. Mundt 2020-01-21 16:41:57 +01:00
  • 23766673be Add host-specific variables for backup dirs and options. Andreas B. Mundt 2020-01-20 19:32:00 +01:00
  • 8a821f501d Move list of apps to playbook variable. Andreas B. Mundt 2020-01-20 19:01:49 +01:00
  • 004919824c Implement borg backup role. Andreas B. Mundt 2020-01-19 18:51:58 +01:00
  • 985cc477b5 Minor fixes and cleanup nextcloud role. Andreas B. Mundt 2020-01-19 18:47:12 +01:00
  • 0a32f99552 App installation and updater. Andreas B. Mundt 2020-01-18 14:42:26 +01:00
  • 31be0f1fc7 Only enable https if not available already. Andreas B. Mundt 2020-01-18 14:39:25 +01:00
  • 6d33f49fad Minor fixes and improvements. Andreas B. Mundt 2020-01-18 14:37:52 +01:00
  • ee86d488bd Experimental systemd-networkd. Andreas B. Mundt 2020-01-18 14:31:25 +01:00
  • 0f9e8d2124 Implement nextcloudcron systemd timer. Andreas B. Mundt 2020-01-16 18:56:32 +01:00
  • 97e980fbf7 Move content from htaccess file to site config. Separate krb5 config. Andreas B. Mundt 2020-01-15 19:47:06 +01:00
  • e069171539 Setup fine tuning and app installation. Andreas B. Mundt 2020-01-14 21:09:24 +01:00
  • 23605d6962 Use occ to modify configuration. Andreas B. Mundt 2020-01-14 14:51:52 +01:00
  • 2a161df7bb Implement nextcloud role. Andreas B. Mundt 2020-01-13 20:44:10 +01:00
  • 21309fb788 Improved determination of next available uid/gid pair. Andreas B. Mundt 2020-01-12 09:22:40 +01:00
  • a58010d8d2 Fix crap in kadmin ACL. Andreas B. Mundt 2019-12-15 18:10:27 +01:00
  • 902a87e258 Add optional posix group handling to script. Andreas B. Mundt 2019-12-14 20:56:45 +01:00
  • dd284d6abd Use subdirs for user's homes. Andreas B. Mundt 2019-12-14 20:21:06 +01:00
  • 81337ac0db Move hard-coded numbers to variables. Andreas B. Mundt 2019-12-13 18:43:42 +01:00
  • 572dd5a3b0 Add LDAP client config and enable pam_umask. Andreas B. Mundt 2019-12-13 18:41:34 +01:00
  • 98b8d5d6ff Add memberof-overlay to LDAP. Andreas B. Mundt 2019-12-13 18:35:00 +01:00
  • 0829b1b2e8 Kerberize firefox in the local domain. Andreas B. Mundt 2019-12-08 08:43:26 +01:00
  • a485f5119d Add kerberox* to the README. Andreas B. Mundt 2019-12-06 20:03:44 +01:00
  • 8c896c90e6 Implement posix group for all users in LDAP. Andreas B. Mundt 2019-12-01 18:21:24 +01:00
  • 43cb4dcf13 Add user import/deletion from file option, minor improvements. Andreas B. Mundt 2019-12-01 10:17:08 +01:00
  • 6b3c2f0e0f Add commands: Option to remove machine principals, start ldapvi. Andreas B. Mundt 2019-11-30 09:56:40 +01:00
  • 61e4b1d852 Add kerberize role (providing kerberized ssh so far). Andreas B. Mundt 2019-11-29 15:47:45 +01:00
  • be829760c6 Improved DHCP configuration, no static IP addresses. Andreas B. Mundt 2019-11-29 14:38:07 +01:00
  • 3b3303e96d Kerberize LDAP access. Andreas B. Mundt 2019-11-28 17:37:19 +01:00
  • 2ff1354fe3 Implement better IP address/network notation. Andreas B. Mundt 2019-11-28 16:34:37 +01:00
  • 3670bf6597 Provide keytab before touching home directories to avoid lock. Andreas B. Mundt 2019-11-27 20:45:27 +01:00
  • 7f49b191ac Make 'ldap', 'kerberos' and 'nfs' hostname aliases. Andreas B. Mundt 2019-11-27 20:21:09 +01:00
  • 9d9da31649 Allow apt-cacher-ng in firewalld. Andreas B. Mundt 2019-11-27 18:31:52 +01:00
  • 1686bf44e7 Improved password management. Make sure the saved password is used after first setup. Andreas B. Mundt 2019-11-27 17:43:58 +01:00
  • 954ac5b0e6 Do not deploy LDAP and KDC during installation as it adds too much complexity. Andreas B. Mundt 2019-11-26 18:52:43 +01:00
  • 284dadc2d3 Cleanup and restructuring. Move pressed-installer tasks to other roles. Andreas B. Mundt 2019-11-25 18:26:21 +01:00
  • a0ee0fd90d Add firewalld rules to service roles. Andreas B. Mundt 2019-11-24 20:53:54 +01:00
  • ea36c9beaf Use provided ansible variable to determine debian release. Andreas B. Mundt 2019-11-24 19:44:01 +01:00
  • f158d8cae1 Add simple script to add/delete users and their group. Andreas B. Mundt 2019-11-23 18:01:24 +01:00
  • fbf48f44f3 Fixes and improvements, NFS/KDC/LDAP related. Andreas B. Mundt 2019-11-21 19:15:22 +01:00
  • 5d5f75e0c8 Do not preseed desktop environment, leave this to the ansible role. Andreas B. Mundt 2019-11-21 17:19:28 +01:00
  • ed8b7a7fa6 Use ansible_domain everywhere and bail out if it is empty. Andreas B. Mundt 2019-11-21 15:47:08 +01:00
  • bbcf45bbeb Implement basic LAN client. Andreas B. Mundt 2019-11-18 18:45:07 +01:00
  • ce6bd53319 Minor fixes and improvements, mostly KDC/LDAP related. Andreas B. Mundt 2019-11-18 15:31:30 +01:00
  • ece5bca5b5 Implement NFS4 server role. Andreas B. Mundt 2019-11-17 19:12:22 +01:00