Is it possible to enable LDAP with this module as well

freeipa / ansible-freeipa

Ansible roles and modules for FreeIPA

GNU General Public License v3.0

503 stars 232 forks source link

Is it possible to enable LDAP with this module as well #784

Open vitomatics opened 2 years ago

vitomatics commented 2 years ago

We are using FreeIPA Kerberos as well as the LDAP that is part of IPA.

In the client module, I can't find any support for writing /etc/openldap/ldap.conf files

Did I miss something?

rjeffman commented 2 years ago

LDAP is not directly managed by ansible-freeipa. Managing of ldap.conf files is done, by ipalib.install modules or ipa-client-install script (IIRC). Both come from FreeIPA.

I don't get what the problem is. What are you trying to achieve?

vitomatics commented 2 years ago

Isn't freeipa a kerberos server and an LDAP server? I don't understand why ldap.conf files are not managed by my this module.
We have an environment where we are using freeipa and need both kerberos and ldap setup.

rjeffman commented 2 years ago

FreeIPA uses kerberos (MIT) and LDAP (389-ds) servers. ldap.conf is modified by IPA installer, but it is not managed by IPA, therefore, not managed with ansible-freeipa.

What is the problem that you are having?