tom/ansible_new_ldap_user
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

added group support

Browse Source
This commit is contained in:
Thomas Constans
2025-09-17 11:36:24 +02:00
parent 15914b17b7
commit 76fab810b0
3 changed files with 22 additions and 15 deletions
Download Patch File Download Diff File Expand all files Collapse all files

18
tasks/ldap_user_inc.yml
View File

@@ -4,13 +4,14 @@
firstname: "{{ item.firstname }}"
lastname: "{{ item.lastname }}"
email: "{{ item.email }}"
group: "{{ item.group | default ('') }}"
dn: "uid={{ item[ nlu_dn_attribute ] |lower }},ou={{ org }},{{ ldap_base }}"
password: "{{ (item.password=='')| ternary(lookup('community.general.random_string', min_lower=1, min_upper=1, special=false,min_numeric=1, length=14), item.password ) }}"
- name: "add ldap account {{dn }}"
community.general.ldap_entry:
bind_dn: "{{ binddn }}"
bind_pw: "{{ bindpwd }}"
bind_dn: "{{ ldap_binddn }}"
bind_pw: "{{ ldap_bindpwd }}"
dn: "{{ dn }} "
state: present
objectClass:
@@ -26,6 +27,19 @@
userPassword: "{{ password }}"
register: result
- name: debug
ansible.builtin.debug:
msg: "group is =={{ group }}=="
- name: "add account to group"
when: group != ""
community.general.ldap_attrs:
dn: "cn={{ group }},ou={{ org }},{{ ldap_base }}"
bind_dn: "{{ ldap_binddn }}"
bind_pw: "{{ ldap_bindpwd }}"
attributes:
member: "{{ dn }}"
- name: "account recap"
ansible.builtin.lineinfile:
path: "tmppassword.csv"