infinidat.infinibox.infini_users_repository module – Create, Delete or Modify respositories of users that can log on to an Infinibox
Note
This module is part of the infinidat.infinibox collection (version 1.4.5).
You might already have this collection installed if you are using the ansible package.
It is not included in ansible-core.
To check whether it is installed, run ansible-galaxy collection list.
To install it, use: ansible-galaxy collection install infinidat.infinibox.
You need further requirements to be able to use this module,
see Requirements for details.
To use it in a playbook, specify: infinidat.infinibox.infini_users_repository.
New in infinidat.infinibox 2.13.0
Synopsis
This module creates, deletes or modifies respositories of users that can log on to an Infinibox.
Requirements
The below requirements are needed on the host that executes this module.
python2 >= 2.7 or python3 >= 3.6
infinisdk (https://infinisdk.readthedocs.io/en/latest/)
Parameters
Parameter |
Comments |
|---|---|
AD auto discover servers Choices:
|
|
AD domain name |
|
The bind user password |
|
The bind username |
|
LDAP or AD port to use Default: |
|
List of LDAP or AD servers Default: |
|
Name of repository |
|
Infinibox User password. |
|
The type of repository Choices:
|
|
Schema group class |
|
Schema group memberof attribute |
|
Schema group name attribute |
|
Schema groups base DN |
|
Schema user class |
|
Schema username attribute |
|
Schema user base DN |
|
A list of LDAP servers. For an empty list, use []. Default: |
|
Creates/Modifies users repositories when present or removes when absent. When getting the stats for a users repository, the module will test connectivity to the repository and report the result in ‘test_ok’ as true or false. Choices:
|
|
Infinibox Hostname or IPv4 Address. |
|
Use SSL (LDAPS) Choices:
|
|
Infinibox User username with sufficient priveledges ( see notes ). |
Notes
Note
This module requires infinisdk python library
You must set INFINIBOX_USER and INFINIBOX_PASSWORD environment variables if user and password arguments are not passed to the module directly
Ansible uses the infinisdk configuration file
~/.infinidat/infinisdk.iniif no credentials are provided. See http://infinisdk.readthedocs.io/en/latest/getting_started.htmlAll Infinidat modules support check mode (–check). However, a dryrun that creates resources may fail if the resource dependencies are not met for a task. For example, consider a task that creates a volume in a pool. If the pool does not exist, the volume creation task will fail. It will fail even if there was a previous task in the playbook that would have created the pool but did not because the pool creation was also part of the dry run.
Examples
- name: Create AD
infini_users_repository:
name: PSUS_ANSIBLE_ad
bind_password: tuFrAxahuYe4
bind_username: conldap
ad_domain_name: infinidat.com
repository_type: ActiveDirectory
schema_group_class: group
schema_group_memberof_attribute: memberof
schema_group_name_attribute: cn
schema_groups_basedn:
schema_user_class: user
schema_username_attribute: sAMAccountName
state: present
system: 172.20.67.167
user: dohlemacher
password: 123456
- name: Stat AD
infini_users_repository:
name: PSUS_ANSIBLE_ad
state: stat
user: admin
password: secret
system: ibox001
- name: Remove AD
infini_users_repository:
name: PSUS_ANSIBLE_ad
state: absent
user: admin
password: secret
system: ibox001