purestorage.flashblade.purefb_keytabs – Manage FlashBlade Kerberos Keytabs
Note
This plugin is part of the purestorage.flashblade collection (version 1.7.0).
You might already have this collection installed if you are using the ansible package. It is not included in ansible-core. To check whether it is installed, run ansible-galaxy collection list.
To install it, use: ansible-galaxy collection install purestorage.flashblade.
To use it in a playbook, specify: purestorage.flashblade.purefb_keytabs.
New in version 1.6.0: of purestorage.flashblade
Synopsis
- Manage Kerberos Keytabs for FlashBlades
Requirements
The below requirements are needed on the host that executes this module.
- python >= 2.7
- purity_fb >= 1.9
- netaddr
- pytz
Parameters
| Parameter | Choices/Defaults | Comments |
|---|---|---|
| api_token string | FlashBlade API token for admin privileged user. | |
| fb_url string | FlashBlade management IP address or Hostname. | |
| filetype string |
| Format of the keytab file |
| keytab_file string | Name of file holding Keytab | |
| name string | Name of the Keytab Must include prefix and suffix | |
| prefix string | Only required for import or rotate
Prefix to use for naming the files slots Specifying a file entry prefix is required because a single keytab file can contain multiple keytab entries in multiple slots. If not provided for import the current AD Account name will be used. | |
| state string |
| Manage Kerberos Keytabs |
Notes
Note
- This module requires the
purity_fbPython library - You must set
PUREFB_URLandPUREFB_APIenvironment variables if fb_url and api_token arguments are not passed to the module directly
Examples
- name: Import a binary keytab
purefb_keytabs:
state: import
prefix: example
keytab_file: pure_krb.keytab
filetype: binary
fb_url: 10.10.10.2
api_token: T-9f276a18-50ab-446e-8a0c-666a3529a1b6
- name: Import a base64 keytab
purefb_keytabs:
state: import
prefix: example
keytab_file: pure_krb.keytab.mime
filetype: base64
fb_url: 10.10.10.2
api_token: T-9f276a18-50ab-446e-8a0c-666a3529a1b6
- name: Export a keytab
purefb_keytabs:
state: export
name: example.3
fb_url: 10.10.10.2
api_token: T-9f276a18-50ab-446e-8a0c-666a3529a1b6
register: download_file
- name: Delete a keytab
purefb_keytabs:
state: absent
name: example.3
fb_url: 10.10.10.2
api_token: T-9f276a18-50ab-446e-8a0c-666a3529a1b6
- name: Rotate current AD account keytabs
purefb_keytabs:
state: rotate
fb_url: 10.10.10.2
- name: Rotate AD account keytabs by creating new series
purefb_keytabs:
state: rotate
name: next_prefix
fb_url: 10.10.10.2
api_token: T-9f276a18-50ab-446e-8a0c-666a3529a1b6
Return Values
Common return values are documented here, the following are the fields unique to this module:
| Key | Returned | Description |
|---|---|---|
| download_file string | When using export option | Name of file containing exported keytab Sample: /tmp/pure_krb8939478070214877726.keytab |
Authors
- Pure Storage Ansible Team (@sdodsley) <pure-ansible-team@purestorage.com>
© 2012–2018 Michael DeHaan
© 2018–2021 Red Hat, Inc.
Licensed under the GNU General Public License version 3.
https://docs.ansible.com/ansible/latest/collections/purestorage/flashblade/purefb_keytabs_module.html