70 lines
3.2 KiB
YAML
Executable File
70 lines
3.2 KiB
YAML
Executable File
---
|
|
# CES ip/credentials
|
|
clusterapiIP: "51.132.24.66"
|
|
clusterUser: ocfadmin
|
|
clusterPassword: mnBMghZLWg63Kge2
|
|
|
|
# CES filesystem mount attributes
|
|
clustermountPrefix: gpfs # /gpfs/fs1 mount point on the file system, attribute required for smb exports
|
|
filesystemName: fs1 # filesystem, probably easiest to create a filesystem (with quotas enabled) for this script
|
|
inodeSpace: root # dependent inode space used, pick a fileset as the parent inode set, the root fileset created for every filesystem is acceptable
|
|
|
|
# CES fileset attributes, used to define new fileset with quota and samba export (samba export shares name with fileset), these are to be script parameters
|
|
filesetName: test6
|
|
quotasizeUnit: G
|
|
quotahardPercentage: 10
|
|
quotasoftSize: 10.5
|
|
quotahardSize: "{{ ((quotasoftSize / 100 * quotahardPercentage) + quotasoftSize)|round(1,'ceil')|abs }}" # quota hard limit, acceptable for M G T sizes
|
|
|
|
# CES Unix directory ownership (might be hardcoded as not useful for samba)
|
|
#owner: uizrs
|
|
#owner: ui-cloudforms-dev
|
|
owner: service_CloudForms
|
|
|
|
# CES AD users/groups for samba ACL and email notification
|
|
#groupmembers: service_CloudForms,service_CloudForms
|
|
#groupmembers: ucats,ucasw2,uizrs,bhzajd,ui-cloudforms-dev
|
|
groupmembers: ucats
|
|
#groupmembers: ui-cloudforms-dev
|
|
#groupmembers: ui-cloudforms-dev
|
|
#groupmembers: ucats,ucasw2
|
|
#groupmembers: ui-thirdpartysupport-essential
|
|
|
|
# AD winrm connectivity details
|
|
ad_host: uiwdcjub04.ad.nottingham.ac.uk # active directory server, when using kerberos (with requisite resolv.conf entry) this must be a fqdn
|
|
#ad_host: UIWDCUPK06.nottingham.ac.uk # works local+cf
|
|
# loadbalanced kerberos doesnt really work unless there are correct entries and ptr records for the loadbalancer endpoint
|
|
#ad_host: cfrm.ad.nottingham.ac.uk
|
|
#ad_host: uivlan913vip3.nottingham.ac.uk
|
|
# ad_host: 128.243.226.17
|
|
# members of cfrm.nottingham.ac.uk
|
|
#ad_host: uiwdcdns07.ad.nottingham.ac.uk # works
|
|
#ad_host: uiwdcjub04a.ad.nottingham.ac.uk # dns not in kerberos db uiwdcjub04a.ad.nottingham.ac.uk - this maybe arogue PTR record
|
|
#ad_host: uiwdcjub04a.ad.nottingham.ac.uk # works
|
|
#ad_host: uiwdcupk06.ad.nottingham.ac.uk # works, random timeouts over vpn
|
|
#
|
|
ad_user: "service_CloudForms" #"service_cloudforms" # AD service account capable of manipulating group membership
|
|
ad_pass: "As109pHY4Wi9o7naZnhr#!" # AD service account password
|
|
ad_connection: winrm
|
|
ad_winrm_transport: kerberos
|
|
ad_winrm_kinit_mode: managed # allow ansible to manage own kerberos token, this will use credentials to make token entries required
|
|
ad_winrm_message_encryption: auto # can be set to always, depends on ad server profile
|
|
ad_port: 5986 # 5985/http for non https transport, UON on-prem use 5986/https
|
|
ad_winrm_scheme: https # UON on-prem use 5986/https
|
|
ad_winrm_server_cert_validation: ignore
|
|
|
|
# control email recipients
|
|
enable_requester_email: true
|
|
enable_customer_email: true
|
|
#from_email: placeholder # donotreply@nottingham.ac.uk
|
|
from_email: donotreply@nottingham.ac.uk
|
|
|
|
# smtp server
|
|
smtp_relay: smtp.nottingham.ac.uk
|
|
smtp_port: 25
|
|
|
|
# Cloudforms API
|
|
api_user: placeholder
|
|
api_pass: placeholder
|
|
|