Skip to content

linuxfabrik.lfops.ipasudocmdgroup

Manage FreeIPA sudocmd groups

Synopsis

  • Manage FreeIPA sudocmd groups

Available since LFOps 6.0.0.

Mandatory Parameters

name

  • The sudocmodgroup name
  • Type: List.

Optional Parameters

action

  • Work on sudocmdgroup or member level
  • Type: String. One of member, sudocmdgroup.
  • Default: sudocmdgroup

description

  • The sudocmdgroup description
  • Type: String.

nomembers

  • Suppress processing of membership attributes
  • Type: Bool.

state

  • State to ensure
  • Type: String. One of present, absent.
  • Default: present

sudocmd

  • List of sudocmds assigned to this sudocmdgroup.
  • Type: List.

Examples

# Ensure sudocmd-group 'network' is present
- ipasudocmdgroup:
    ipaadmin_password: SomeADMINpassword
    name: network
    state: present

# Ensure sudocmdgroup and sudocmd are present in 'network' sudocmdgroup
- ipasudocmdgroup:
    ipaadmin_password: SomeADMINpassword
    name: network
    sudocmd:
    - /usr/sbin/ifconfig
    - /usr/sbin/iwlist
    action: member

# Ensure sudocmdgroup and sudocmd are absent in 'network' sudocmdgroup
- ipasudocmdgroup:
    ipaadmin_password: SomeADMINpassword
    name: network
    sudocmd:
    - /usr/sbin/ifconfig
    - /usr/sbin/iwlist
    action: member
    state: absent

# Ensure sudocmd-group 'network' is absent
- ipasudocmdgroup:
    ipaadmin_password: SomeADMINpassword
    name: network
    action: member
    state: absent

Authors

  • Rafael Guterres Jeffman (@rjeffman)
  • Thomas Woerner (@t-woerner)