Puppet Class: central_auth

Defined in:
manifests/init.pp

Overview

Class: central_auth

A module to manage Authentication using SSSD and PAM

Parameters:

  • manage_auth (Boolean) (defaults to: false)
  • enable_sssd (Boolean) (defaults to: true)
  • enable_pam_access (Boolean) (defaults to: false)
  • manage_pam_files (Boolean) (defaults to: true) 


4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
 
# File 'manifests/init.pp', line 4

class central_auth (
  # Class parameters are populated from External(hiera)/Defaults/Fail
  Boolean $manage_auth                = false,
  Boolean $enable_sssd                = true,
  Boolean $enable_pam_access          = false,
  Boolean $manage_pam_files           = true,
) {

  case $facts['osfamily'] {
    'Suse': {
      if Numeric($::operatingsystemmajrelease) < 11 {
        fail("Wrong SLES version, should be 11 or greater than 11, not ${::operatingsystemmajrelease}")
      }
    }
    'RedHat': {
      if Numeric($::operatingsystemmajrelease) < 6 {
        fail("Wrong RedHat version, should be 6 or greater than 6, not ${::operatingsystemmajrelease}")
      }
    }
    'Debian': {
      if Numeric($::operatingsystemmajrelease) < 7 and $facts['operatingsystem'] == 'Debian' {
        fail("Wrong Debian version, should be 7 or greater than 7, not ${::operatingsystemmajrelease}")
      } elsif Numeric($::operatingsystemmajrelease) < 12 and $facts['operatingsystem'] == 'Ubuntu' {
        fail("Wrong Debian version, should be 12 or greater than 12, not ${::operatingsystemmajrelease}")
      }
    }
    default: {
      fail("Wrong OS Family, should be RedHat, Debian or Suse, not ${::osfamily}")
    }
  }

  if $manage_auth {

    class { 'central_auth::install': }

    -> class { 'central_auth::config': }

    -> class { 'central_auth::pam': }

    -> class { 'central_auth::join_ad': }

    -> class { 'central_auth::service': }

  }
}