59 lines
2.0 KiB
YAML
59 lines
2.0 KiB
YAML
---
|
||
|
||
- name: Проверка состояния первого контроллера домена
|
||
hosts: dctest1
|
||
|
||
tasks:
|
||
- name: Проверка наличия развёрнутого домена на хосте {{ ansible_hostname }}
|
||
ansible.builtin.shell: "samba-tool domain info {{ ansible_default_ipv4.address }}"
|
||
register: samba_tool_result
|
||
|
||
- name: Информация о домене
|
||
ansible.builtin.debug:
|
||
var: samba_tool_result.stdout_lines
|
||
|
||
- name: Получение настройки резолвера
|
||
ansible.builtin.shell: "cat /etc/resolv.conf"
|
||
register: resolv_conf_result
|
||
- name: Вывод /etc/resolv.conf
|
||
ansible.builtin.debug:
|
||
var: resolv_conf_result.stdout_lines
|
||
|
||
- name: Записи служб DNS. Kerberos
|
||
ansible.builtin.shell: "host -t SRV _kerberos._udp.{{ dc_details.realm }}"
|
||
register: srv_kerberos
|
||
- name: SRV запись Kerberos
|
||
ansible.builtin.debug:
|
||
var: srv_kerberos.stdout_lines
|
||
|
||
- name: Записи служб DNS. LDAP
|
||
ansible.builtin.shell: "host -t SRV _ldap._tcp.{{ dc_details.realm }}"
|
||
register: srv_ldap
|
||
- name: SRV запись LDAP
|
||
ansible.builtin.debug:
|
||
var: srv_ldap.stdout_lines
|
||
|
||
- name: Записи служб DNS. A запись
|
||
ansible.builtin.shell: "host {{ hostnames.dc1_host }}.{{ dc_details.realm }}"
|
||
register: a_line
|
||
- name: A запись домена
|
||
ansible.builtin.debug:
|
||
var: a_line.stdout_lines
|
||
|
||
- name: Проверка возможности авторизации Kerberos
|
||
ansible.builtin.expect:
|
||
command: "kinit {{ dc_details.admin }}"
|
||
responses:
|
||
# "Password for {{ dc_details.admin }}@{{ dc_details.realm_u }}:": "{{ dc_details.adminpass }}"
|
||
"Password for .*:": "{{ dc_details.adminpass }}"
|
||
echo: true
|
||
timeout: 5
|
||
no_log: true
|
||
|
||
- name: Текущие билеты Kerberos
|
||
ansible.builtin.shell: "klist"
|
||
register: klist
|
||
- name: Вывод билета Kerberos
|
||
ansible.builtin.debug:
|
||
var: klist.stdout_lines
|