| Petr Michalec | 56e329c | 2017-07-03 14:32:04 +0200 | [diff] [blame] | 1 | classes: |
| Petr Michalec | f05e3ea | 2017-08-21 17:33:16 +0200 | [diff] [blame] | 2 | #- cluster.aaa-ha-freeipa.aaa |
| Petr Michalec | aaa5ebf | 2017-09-27 17:26:15 +0200 | [diff] [blame] | 3 | |
| 4 | # FIXME: Workaround linux.system.single rhel |
| 5 | #- system.linux.system.single |
| 6 | - cluster.aaa-ha-freeipa.aaa.linux-system-single |
| 7 | |
| Petr Michalec | 56e329c | 2017-07-03 14:32:04 +0200 | [diff] [blame] | 8 | - system.openssh.server.team.lab |
| 9 | - system.openssh.server.team.tcpcloud |
| 10 | - system.openssh.server.team.mcp_qa |
| 11 | - system.openssh.server.team.mmo_devops |
| 12 | parameters: |
| 13 | _param: |
| 14 | salt_minion_ca_host: ${_param:infra_config_hostname}.${_param:cluster_domain} |
| 15 | salt_minion_ca_authority: salt_master_ca |
| 16 | |
| 17 | # freeipa settings |
| 18 | |
| 19 | # addresses and hostnames |
| 20 | identity_control_hostname: idm |
| 21 | identity_control_address: 172.16.10.240 |
| 22 | identity_control_node01_hostname: idm01 |
| 23 | identity_control_node02_hostname: idm02 |
| 24 | identity_control_node03_hostname: idm03 |
| 25 | identity_control_node01_address: 172.16.10.241 |
| 26 | identity_control_node02_address: 172.16.10.242 |
| 27 | identity_control_node03_address: 172.16.10.243 |
| 28 | identity_proxy_node01_hostname: prx01 |
| 29 | identity_proxy_node02_hostname: prx02 |
| 30 | identity_proxy_node01_address: 172.16.10.244 |
| 31 | identity_proxy_node02_address: 172.16.10.245 |
| 32 | |
| 33 | # cluster meta |
| 34 | cluster_vip_address: ${_param:identity_control_address} |
| 35 | cluster_local_address: ${_param:single_address} |
| 36 | cluster_node01_hostname: ${_param:identity_control_node01_hostname} |
| 37 | cluster_node01_address: ${_param:identity_control_node01_address} |
| 38 | cluster_node02_hostname: ${_param:identity_control_node02_hostname} |
| 39 | cluster_node02_address: ${_param:identity_control_node02_address} |
| 40 | cluster_node03_hostname: ${_param:identity_control_node03_hostname} |
| 41 | cluster_node03_address: ${_param:identity_control_node03_address} |
| 42 | |
| Petr Michalec | 6463b43 | 2017-08-17 11:52:59 +0200 | [diff] [blame] | 43 | # FIXME |
| 44 | # temporarily - fix on reclass model or here |
| Petr Michalec | 56e329c | 2017-07-03 14:32:04 +0200 | [diff] [blame] | 45 | freeipa_node01_hostname: ${_param:cluster_node01_address} |
| 46 | freeipa_node02_hostname: ${_param:cluster_node02_address} |
| 47 | freeipa_node03_hostname: ${_param:cluster_node03_address} |
| 48 | freeipa_client_nsupdate_01_address: ${_param:cluster_node01_address} |
| Petr Michalec | 6463b43 | 2017-08-17 11:52:59 +0200 | [diff] [blame] | 49 | # temporarily - fix on reclass model or here |
| 50 | infra_freeipa_node01_hostname: ${_param:freeipa_node01_hostname} |
| 51 | infra_freeipa_node02_hostname: ${_param:freeipa_node02_hostname} |
| 52 | infra_freeipa_node03_hostname: ${_param:freeipa_node03_hostname} |
| 53 | infra_idm_node01_address: ${_param:identity_control_node01_address} |
| 54 | infra_idm_node02_address: ${_param:identity_control_node02_address} |
| 55 | infra_idm_node03_address: ${_param:identity_control_node03_address} |
| Petr Michalec | 56e329c | 2017-07-03 14:32:04 +0200 | [diff] [blame] | 56 | |
| 57 | linux: |
| 58 | network: |
| 59 | resolv: |
| Petr Michalec | 4d36637 | 2017-09-18 13:54:53 +0200 | [diff] [blame] | 60 | domain: aaa-ha-freeipa.local |
| Petr Michalec | 56e329c | 2017-07-03 14:32:04 +0200 | [diff] [blame] | 61 | options: |
| 62 | - ndots:5 |
| 63 | - timeout:2 |
| 64 | - attempts:2 |
| 65 | host: |
| 66 | idm: |
| 67 | address: ${_param:identity_control_address} |
| 68 | names: |
| 69 | - ${_param:identity_control_hostname} |
| 70 | - ${_param:identity_control_hostname}.${_param:cluster_domain} |
| 71 | idm01: |
| 72 | address: ${_param:identity_control_node01_address} |
| 73 | names: |
| 74 | - ${_param:identity_control_node01_hostname} |
| 75 | - ${_param:identity_control_node01_hostname}.${_param:cluster_domain} |
| 76 | idm02: |
| 77 | address: ${_param:identity_control_node02_address} |
| 78 | names: |
| 79 | - ${_param:identity_control_node02_hostname} |
| 80 | - ${_param:identity_control_node02_hostname}.${_param:cluster_domain} |
| 81 | idm03: |
| 82 | address: ${_param:identity_control_node03_address} |
| 83 | names: |
| 84 | - ${_param:identity_control_node03_hostname} |
| 85 | - ${_param:identity_control_node03_hostname}.${_param:cluster_domain} |
| Petr Michalec | 56e329c | 2017-07-03 14:32:04 +0200 | [diff] [blame] | 86 | prx01: |
| 87 | address: ${_param:identity_proxy_node01_address} |
| 88 | names: |
| 89 | - ${_param:identity_proxy_node01_hostname} |
| 90 | - ${_param:identity_proxy_node01_hostname}.${_param:cluster_domain} |
| Petr Michalec | 6463b43 | 2017-08-17 11:52:59 +0200 | [diff] [blame] | 91 | prx02: |
| 92 | address: ${_param:identity_proxy_node02_address} |
| 93 | names: |
| 94 | - ${_param:identity_proxy_node02_hostname} |
| 95 | - ${_param:identity_proxy_node02_hostname}.${_param:cluster_domain} |
| Petr Michalec | 56e329c | 2017-07-03 14:32:04 +0200 | [diff] [blame] | 96 | system: |
| 97 | rc: |
| 98 | local: | |
| 99 | #!/bin/sh -e |
| 100 | # |
| 101 | # rc.local |
| 102 | # |
| 103 | ######### This file is managed by Salt! ########## |
| 104 | # This script is executed at the end of each multiuser runlevel. |
| 105 | # Make sure that the script will "exit 0" on success or any other |
| 106 | # value on error. |
| 107 | # |
| 108 | ip r a 10.254.0.0/16 dev ens3 |
| 109 | exit 0 |