--- # CES ip/credentials clusterapiIP: "51.132.24.66" clusterUser: ocfadmin clusterPassword: mnBMghZLWg63Kge2 # CES filesystem mount attributes clustermountPrefix: gpfs # /gpfs/fs1 mount point on the file system, attribute required for smb exports filesystemName: fs1 # filesystem, probably easiest to create a filesystem (with quotas enabled) for this script inodeSpace: root # dependent inode space used, pick a fileset as the parent inode set, the root fileset created for every filesystem is acceptable # CES fileset attributes, used to define new fileset with quota and samba export (samba export shares name with fileset), these are to be script parameters filesetName: test6 quotasizeUnit: G quotahardPercentage: 10 quotasoftSize: 10.5 quotahardSize: "{{ ((quotasoftSize / 100 * quotahardPercentage) + quotasoftSize)|round(1,'ceil')|abs }}" # quota hard limit, acceptable for M G T sizes # CES Unix directory ownership (might be hardcoded as not useful for samba) #owner: uizrs #owner: ui-cloudforms-dev owner: service_CloudForms # CES AD users/groups for samba ACL and email notification #groupmembers: service_CloudForms,service_CloudForms #groupmembers: ucats,ucasw2,uizrs,bhzajd,ui-cloudforms-dev groupmembers: ucats #groupmembers: ui-cloudforms-dev #groupmembers: ui-cloudforms-dev #groupmembers: ucats,ucasw2 #groupmembers: ui-thirdpartysupport-essential # AD winrm connectivity details ad_host: uiwdcjub04.ad.nottingham.ac.uk # active directory server, when using kerberos (with requisite resolv.conf entry) this must be a fqdn #ad_host: UIWDCUPK06.nottingham.ac.uk # works local+cf # loadbalanced kerberos doesnt really work unless there are correct entries and ptr records for the loadbalancer endpoint #ad_host: cfrm.ad.nottingham.ac.uk #ad_host: uivlan913vip3.nottingham.ac.uk # ad_host: 128.243.226.17 # members of cfrm.nottingham.ac.uk #ad_host: uiwdcdns07.ad.nottingham.ac.uk # works #ad_host: uiwdcjub04a.ad.nottingham.ac.uk # dns not in kerberos db uiwdcjub04a.ad.nottingham.ac.uk - this maybe arogue PTR record #ad_host: uiwdcjub04a.ad.nottingham.ac.uk # works #ad_host: uiwdcupk06.ad.nottingham.ac.uk # works, random timeouts over vpn # ad_user: "service_CloudForms" #"service_cloudforms" # AD service account capable of manipulating group membership ad_pass: "As109pHY4Wi9o7naZnhr#!" # AD service account password ad_connection: winrm ad_winrm_transport: kerberos ad_winrm_kinit_mode: managed # allow ansible to manage own kerberos token, this will use credentials to make token entries required ad_winrm_message_encryption: auto # can be set to always, depends on ad server profile ad_port: 5986 # 5985/http for non https transport, UON on-prem use 5986/https ad_winrm_scheme: https # UON on-prem use 5986/https ad_winrm_server_cert_validation: ignore # control email recipients enable_requester_email: true enable_customer_email: true #from_email: placeholder # donotreply@nottingham.ac.uk from_email: donotreply@nottingham.ac.uk # smtp server smtp_relay: smtp.nottingham.ac.uk smtp_port: 25 # Cloudforms API api_user: placeholder api_pass: placeholder