2021-09-01 17:31:49 -06:00
|
|
|
---
|
|
|
|
|
# file: roles/base/defaults/main.yml
|
|
|
|
|
|
|
|
|
|
# ****
|
|
|
|
|
# Core
|
|
|
|
|
# ****
|
|
|
|
|
|
|
|
|
|
# General
|
|
|
|
|
# =======
|
|
|
|
|
|
2022-08-25 09:30:20 -06:00
|
|
|
# User that should be configured for future management
|
2021-09-01 17:31:49 -06:00
|
|
|
base_core_management_user: "{{ ansible_user }}"
|
|
|
|
|
|
2022-08-25 09:30:20 -06:00
|
|
|
# Secondary user that may be configured for future management
|
|
|
|
|
base_core_secondary_user: ""
|
|
|
|
|
|
2022-07-09 11:32:31 -06:00
|
|
|
# If enabled, the password for the management user account will be disabled
|
|
|
|
|
base_core_management_user_disable_password: false
|
|
|
|
|
|
2022-08-25 09:30:20 -06:00
|
|
|
# If enabled, the password for the secondary user account will be disabled
|
|
|
|
|
base_core_secondary_user_disable_password: false
|
|
|
|
|
|
2021-09-01 17:31:49 -06:00
|
|
|
# Install all available updates at runtime
|
|
|
|
|
base_core_install_updates: true
|
|
|
|
|
|
2022-08-23 08:16:12 -06:00
|
|
|
# Firewall
|
|
|
|
|
# ========
|
|
|
|
|
|
|
|
|
|
# Allows the firewall to be configured
|
|
|
|
|
base_core_firewall_configure: true
|
|
|
|
|
|
2021-09-01 17:31:49 -06:00
|
|
|
# Hostname
|
|
|
|
|
# ========
|
|
|
|
|
|
|
|
|
|
# Defines the hostname to be forced on the host but is ignored if undefined
|
|
|
|
|
base_core_hostname: ""
|
|
|
|
|
|
|
|
|
|
# MOTD
|
|
|
|
|
# ====
|
|
|
|
|
|
2022-08-22 15:32:00 -06:00
|
|
|
# Allows the MOTD to be configured
|
2022-08-23 08:25:04 -06:00
|
|
|
base_core_motd_configure: true
|
2022-08-22 13:35:30 -06:00
|
|
|
|
2021-09-01 17:31:49 -06:00
|
|
|
# Banner to add to MOTD
|
|
|
|
|
base_core_motd_banner: ""
|
|
|
|
|
|
2022-08-23 08:12:43 -06:00
|
|
|
# Root CA
|
|
|
|
|
# =======
|
|
|
|
|
|
|
|
|
|
# Defines the basename to use for the Root CA
|
|
|
|
|
base_core_root_ca_basename: ""
|
|
|
|
|
|
|
|
|
|
# Converts the defined certificate from DER to PEM type
|
|
|
|
|
base_core_root_ca_convert: false
|
|
|
|
|
|
|
|
|
|
# URL to download the Root CA
|
|
|
|
|
base_core_root_ca_url: ""
|
|
|
|
|
|
2021-09-01 17:31:49 -06:00
|
|
|
# SSH
|
|
|
|
|
# ===
|
|
|
|
|
|
|
|
|
|
# Allow ssh root login
|
|
|
|
|
base_core_ssh_permit_root_login: false
|
|
|
|
|
|
|
|
|
|
# Allow ssh password authentication
|
|
|
|
|
base_core_ssh_permit_password_authentication: false
|
|
|
|
|
|
|
|
|
|
# Self Signed Cert
|
|
|
|
|
# ================
|
|
|
|
|
|
|
|
|
|
# Common name for self signed cert, use hostname as a default
|
|
|
|
|
base_core_cert_common_name: "{{ ansible_facts['nodename'] }}"
|
|
|
|
|
|
2022-08-23 08:12:43 -06:00
|
|
|
# Time Sync
|
|
|
|
|
# ========
|
2021-09-01 17:31:49 -06:00
|
|
|
|
2022-08-23 08:12:43 -06:00
|
|
|
# Defines the timezone to apply to the client
|
|
|
|
|
base_core_timezone: "America/Boise"
|
2021-09-01 17:31:49 -06:00
|
|
|
|
|
|
|
|
# Web Management
|
|
|
|
|
# ==============
|
|
|
|
|
|
|
|
|
|
# Enables the installation of the cockpit web management package(s)
|
|
|
|
|
base_core_web_management: false
|
2022-07-08 05:47:50 -06:00
|
|
|
|
2022-08-22 14:14:56 -06:00
|
|
|
# ******
|
|
|
|
|
# Debian
|
|
|
|
|
# ******
|
|
|
|
|
|
|
|
|
|
# Automatic Updates
|
|
|
|
|
# =============
|
|
|
|
|
|
|
|
|
|
base_debian_automatic_updates_download: "02:00"
|
|
|
|
|
base_debian_automatic_updates_download_randomizer: "5m"
|
|
|
|
|
base_debian_automatic_updates_update: "02:15"
|
|
|
|
|
base_debian_automatic_updates_update_randomizer: "5m"
|
|
|
|
|
base_debian_automatic_updates_reboot: "03:30"
|
|
|
|
|
|
2022-07-08 05:47:50 -06:00
|
|
|
# ******
|
|
|
|
|
# RedHat
|
|
|
|
|
# ******
|
|
|
|
|
|
|
|
|
|
# RHEL Subscription
|
|
|
|
|
# =============
|
|
|
|
|
|
|
|
|
|
base_redhat_subscription_activationkey: ""
|
|
|
|
|
base_redhat_subscription_org_id: ""
|
2022-08-22 13:04:29 -06:00
|
|
|
|
2022-08-22 14:18:13 -06:00
|
|
|
# EPEL
|
|
|
|
|
# =============
|
|
|
|
|
|
|
|
|
|
base_redhat_epel: true
|
|
|
|
|
|
2022-08-22 13:04:29 -06:00
|
|
|
# DNF Automatic
|
|
|
|
|
# =============
|
|
|
|
|
|
2022-08-22 14:28:58 -06:00
|
|
|
base_redhat_dnf_automatic_timer: "02:00"
|
|
|
|
|
base_redhat_dnf_automatic_timer_randomizer: "5m"
|
|
|
|
|
|
2022-08-22 13:04:29 -06:00
|
|
|
# commands
|
|
|
|
|
# --------
|
|
|
|
|
|
|
|
|
|
base_redhat_dnf_automatic_apply_updates: yes
|
|
|
|
|
base_redhat_dnf_automatic_download_updates: yes
|
|
|
|
|
base_redhat_dnf_automatic_upgrade_type: default
|
|
|
|
|
base_redhat_dnf_automatic_random_sleep: 0
|
|
|
|
|
|
|
|
|
|
# emitters
|
|
|
|
|
# --------
|
|
|
|
|
|
|
|
|
|
base_redhat_dnf_automatic_emit_via: stdio
|
|
|
|
|
base_redhat_dnf_automatic_system_name: "{{ ansible_facts['nodename'] }}"
|
|
|
|
|
|
|
|
|
|
# command
|
|
|
|
|
# -------
|
|
|
|
|
|
|
|
|
|
base_redhat_dnf_automatic_command_format: ""
|
|
|
|
|
base_redhat_dnf_automatic_stdin_format: ""
|
|
|
|
|
|
|
|
|
|
# command_email
|
|
|
|
|
# -------------
|
|
|
|
|
|
|
|
|
|
base_redhat_dnf_automatic_email_command_format: ""
|
|
|
|
|
base_redhat_dnf_automatic_email_stdin_format: ""
|
|
|
|
|
|
|
|
|
|
# email
|
|
|
|
|
# -----
|
|
|
|
|
|
|
|
|
|
base_redhat_dnf_automatic_email_from: root
|
|
|
|
|
base_redhat_dnf_automatic_email_to: root
|
|
|
|
|
base_redhat_dnf_automatic_email_host: localhost
|
