ipa_vault – Manage FreeIPA vaults¶
New in version 2.7.
Synopsis¶
- Add, modify and delete vaults and secret vaults.
- KRA service should be enabled to use this module.
Parameters¶
Examples¶
# Ensure vault is present
- ipa_vault:
name: vault01
vault_type: standard
user: user01
ipa_host: ipa.example.com
ipa_user: admin
ipa_pass: topsecret
validate_certs: false
# Ensure vault is present for Admin user
- ipa_vault:
name: vault01
vault_type: standard
ipa_host: ipa.example.com
ipa_user: admin
ipa_pass: topsecret
# Ensure vault is absent
- ipa_vault:
name: vault01
vault_type: standard
user: user01
state: absent
ipa_host: ipa.example.com
ipa_user: admin
ipa_pass: topsecret
# Modify vault if already exists
- ipa_vault:
name: vault01
vault_type: standard
description: "Vault for test"
ipa_host: ipa.example.com
ipa_user: admin
ipa_pass: topsecret
replace: True
# Get vault info if already exists
- ipa_vault:
name: vault01
ipa_host: ipa.example.com
ipa_user: admin
ipa_pass: topsecret
Return Values¶
Common return values are documented here, the following are the fields unique to this module:
Key | Returned | Description |
---|---|---|
vault
dictionary
|
always |
Vault as returned by IPA API
|
Status¶
- This module is not guaranteed to have a backwards compatible interface. [preview]
- This module is maintained by the Ansible Community. [community]
Authors¶
- Juan Manuel Parrilla (@jparrill)
Hint
If you notice any issues in this documentation, you can edit this document to improve it.