blob: 26cdf01de0f99e8d2bce218ee7985b87ccaa72cf (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
|
Common
======
Description
-----------
The `common` role is a meta-role that performs base configuration common to all
Rocky Linux hosts.
This role pulls in the following roles as dependencies:
Role | Description
--------------------------------------------------------------|-------------
[proxmox\_instance](../proxmox_instance/) | Builds a Proxmox VM if host is a member of `proxmox_instances`
[dns\_records](../dns_records/) | Creates A, PTR, and CNAME records for the host in FreeIPA
[gather\_facts](../gather_facts/) | Runs the Ansible `setup` module once the host is reachable.
[udev](../udev/) | Configures `udev` rules
[root\_authorized\_keys](../root_authorized_keys/) | Sets `authorized_keys` for the root user
[root\_password](../root_password/) | Sets password for the root user
[polkit](../polkit/) | Adds a `polkit` rule for the specified admin group
[grub](../grub/) | Configures kernel command line in `grub`
[sudo](../sudo/) | Configures `sudo`
[hostname](../hostname/) | Sets the hostname
[timezone](../timezone/) | Sets the timezone
[journald](../journald/) | Configures systemd journal
[yum\_disable\_default\_repos](../yum_disable_default_repos/) | Disables upstream Rocky Linux yum repos
[yum](../yum/) | Configures internal yum repos
[dnsmasq](../dnsmasq/) | Configures `dnsmasq` for local DNS caching
[locale](../locale/) | Sets the locale
[selinux](../selinux/) | Enables SELinux and `setroubleshootd`
[qemu\_guest\_agent](../qemu_guest_agent/) | Enables `qemu-guest-agent` for Proxmox VMs
[firewalld](../firewalld/) | Enables local firewall with `firewalld`
[chrony](../chrony/) | Enables `chrony` NTP client
[dnf\_automatic](../dnf_automatic/) | Configures automatic package updates and reboots
[ssh](../ssh/) | Generates global `ssh_config`
[tuned](../tuned/) | Configures `tuned` profile
[motd](../motd/) | Disables `cockpit` MOTD message
[packages](../packages/) | Installs common packages
[postfix\_client](../postfix_client/) | Configures `postfix` client for internal mailserver
[freeipa\_client](../freeipa_client/) | Joins host to FreeIPA domain
[rsyslog\_client](../rsyslog_client/) | Configures `rsyslog` forwarding to internal syslog server
[nagios\_client](../nagios_client/) | Configures `nagios` user and plugin scripts
Usage
-----
Example playbook:
````yaml
- name: apply base configuration
hosts: all
roles:
- common
````
|