| Petr Michalec | 56e329c | 2017-07-03 14:32:04 +0200 | [diff] [blame] | 1 | classes: |
| Petr Michalec | f05e3ea | 2017-08-21 17:33:16 +0200 | [diff] [blame] | 2 | #- cluster.aaa-ha-freeipa.aaa |
| Petr Michalec | aaa5ebf | 2017-09-27 17:26:15 +0200 | [diff] [blame] | 3 | |
| 4 | # FIXME: Workaround linux.system.single rhel |
| 5 | #- system.linux.system.single |
| 6 | - cluster.aaa-ha-freeipa.aaa.linux-system-single |
| 7 | |
| Petr Michalec | 56e329c | 2017-07-03 14:32:04 +0200 | [diff] [blame] | 8 | - system.openssh.server.team.lab |
| 9 | - system.openssh.server.team.tcpcloud |
| 10 | - system.openssh.server.team.mcp_qa |
| 11 | - system.openssh.server.team.mmo_devops |
| Petr Michalec | cf0e136 | 2017-10-06 09:02:18 +0200 | [diff] [blame] | 12 | - system.openssh.server.team.services |
| Petr Michalec | 56e329c | 2017-07-03 14:32:04 +0200 | [diff] [blame] | 13 | parameters: |
| 14 | _param: |
| 15 | salt_minion_ca_host: ${_param:infra_config_hostname}.${_param:cluster_domain} |
| 16 | salt_minion_ca_authority: salt_master_ca |
| 17 | |
| 18 | # freeipa settings |
| 19 | |
| 20 | # addresses and hostnames |
| 21 | identity_control_hostname: idm |
| 22 | identity_control_address: 172.16.10.240 |
| 23 | identity_control_node01_hostname: idm01 |
| 24 | identity_control_node02_hostname: idm02 |
| 25 | identity_control_node03_hostname: idm03 |
| 26 | identity_control_node01_address: 172.16.10.241 |
| 27 | identity_control_node02_address: 172.16.10.242 |
| 28 | identity_control_node03_address: 172.16.10.243 |
| 29 | identity_proxy_node01_hostname: prx01 |
| 30 | identity_proxy_node02_hostname: prx02 |
| 31 | identity_proxy_node01_address: 172.16.10.244 |
| 32 | identity_proxy_node02_address: 172.16.10.245 |
| 33 | |
| 34 | # cluster meta |
| 35 | cluster_vip_address: ${_param:identity_control_address} |
| 36 | cluster_local_address: ${_param:single_address} |
| 37 | cluster_node01_hostname: ${_param:identity_control_node01_hostname} |
| 38 | cluster_node01_address: ${_param:identity_control_node01_address} |
| 39 | cluster_node02_hostname: ${_param:identity_control_node02_hostname} |
| 40 | cluster_node02_address: ${_param:identity_control_node02_address} |
| 41 | cluster_node03_hostname: ${_param:identity_control_node03_hostname} |
| 42 | cluster_node03_address: ${_param:identity_control_node03_address} |
| 43 | |
| Petr Michalec | 6463b43 | 2017-08-17 11:52:59 +0200 | [diff] [blame] | 44 | # FIXME |
| 45 | # temporarily - fix on reclass model or here |
| Petr Michalec | 56e329c | 2017-07-03 14:32:04 +0200 | [diff] [blame] | 46 | freeipa_node01_hostname: ${_param:cluster_node01_address} |
| 47 | freeipa_node02_hostname: ${_param:cluster_node02_address} |
| 48 | freeipa_node03_hostname: ${_param:cluster_node03_address} |
| 49 | freeipa_client_nsupdate_01_address: ${_param:cluster_node01_address} |
| Petr Michalec | 6463b43 | 2017-08-17 11:52:59 +0200 | [diff] [blame] | 50 | # temporarily - fix on reclass model or here |
| 51 | infra_freeipa_node01_hostname: ${_param:freeipa_node01_hostname} |
| 52 | infra_freeipa_node02_hostname: ${_param:freeipa_node02_hostname} |
| 53 | infra_freeipa_node03_hostname: ${_param:freeipa_node03_hostname} |
| 54 | infra_idm_node01_address: ${_param:identity_control_node01_address} |
| 55 | infra_idm_node02_address: ${_param:identity_control_node02_address} |
| 56 | infra_idm_node03_address: ${_param:identity_control_node03_address} |
| Petr Michalec | 56e329c | 2017-07-03 14:32:04 +0200 | [diff] [blame] | 57 | |
| 58 | linux: |
| 59 | network: |
| 60 | resolv: |
| Petr Michalec | 4d36637 | 2017-09-18 13:54:53 +0200 | [diff] [blame] | 61 | domain: aaa-ha-freeipa.local |
| Petr Michalec | 56e329c | 2017-07-03 14:32:04 +0200 | [diff] [blame] | 62 | options: |
| 63 | - ndots:5 |
| 64 | - timeout:2 |
| 65 | - attempts:2 |
| 66 | host: |
| 67 | idm: |
| 68 | address: ${_param:identity_control_address} |
| 69 | names: |
| 70 | - ${_param:identity_control_hostname} |
| 71 | - ${_param:identity_control_hostname}.${_param:cluster_domain} |
| 72 | idm01: |
| 73 | address: ${_param:identity_control_node01_address} |
| 74 | names: |
| 75 | - ${_param:identity_control_node01_hostname} |
| 76 | - ${_param:identity_control_node01_hostname}.${_param:cluster_domain} |
| 77 | idm02: |
| 78 | address: ${_param:identity_control_node02_address} |
| 79 | names: |
| 80 | - ${_param:identity_control_node02_hostname} |
| 81 | - ${_param:identity_control_node02_hostname}.${_param:cluster_domain} |
| 82 | idm03: |
| 83 | address: ${_param:identity_control_node03_address} |
| 84 | names: |
| 85 | - ${_param:identity_control_node03_hostname} |
| 86 | - ${_param:identity_control_node03_hostname}.${_param:cluster_domain} |
| Petr Michalec | 56e329c | 2017-07-03 14:32:04 +0200 | [diff] [blame] | 87 | prx01: |
| 88 | address: ${_param:identity_proxy_node01_address} |
| 89 | names: |
| 90 | - ${_param:identity_proxy_node01_hostname} |
| 91 | - ${_param:identity_proxy_node01_hostname}.${_param:cluster_domain} |
| Petr Michalec | 6463b43 | 2017-08-17 11:52:59 +0200 | [diff] [blame] | 92 | prx02: |
| 93 | address: ${_param:identity_proxy_node02_address} |
| 94 | names: |
| 95 | - ${_param:identity_proxy_node02_hostname} |
| 96 | - ${_param:identity_proxy_node02_hostname}.${_param:cluster_domain} |
| Petr Michalec | 56e329c | 2017-07-03 14:32:04 +0200 | [diff] [blame] | 97 | system: |
| 98 | rc: |
| 99 | local: | |
| 100 | #!/bin/sh -e |
| 101 | # |
| 102 | # rc.local |
| 103 | # |
| 104 | ######### This file is managed by Salt! ########## |
| 105 | # This script is executed at the end of each multiuser runlevel. |
| 106 | # Make sure that the script will "exit 0" on success or any other |
| 107 | # value on error. |
| 108 | # |
| 109 | ip r a 10.254.0.0/16 dev ens3 |
| 110 | exit 0 |