Update

2023-07-04 18:59:39 +02:00
parent 813fd96738
commit 8c3e380d16
115 changed files with 4510 additions and 4 deletions
--- a/roles/configure_hosts/tasks/main.yml
+++ b/roles/configure_hosts/tasks/main.yml
@ -0,0 +1,126 @@
+---
+# tasks file for configure_hosts
+
+
+# Assign worker nodes hostnames
+- name: Assign hostname for worker 01
+  hostname:
+    name: "{{ k8s_worker_01 }}"
+    use: systemd
+  when: inventory_hostname == '192.168.50.177'
+  tags:
+  - worker
+  - ip_address
+
+- name: Assign hostname for worker 02
+  hostname:
+    name: "{{ k8s_worker_02 }}"
+  when: inventory_hostname == '192.168.50.202'
+  tags:
+  - worker
+  - ip_address
+
+- name: Assign hostname for worker 03
+  hostname:
+    name: "{{ k8s_worker_03 }}"
+  when: inventory_hostname == '192.168.50.30'
+  tags:
+  - worker
+  - ip_address
+
+# Assign API Master Server Hostname
+- name: Assign hostname for K8's Master
+  hostname:
+    name: "{{ k8s_master_01 }}"
+  when: inventory_hostname == '192.168.50.240'
+  tags:
+  - master
+  - ip_address
+
+# Assign Load Balancer Hostname
+- name: Assign hostname for Load Balancer
+  hostname:
+    name: "{{ k8s_balancer_01 }}"
+  when: inventory_hostname == '192.168.50.117'
+  tags:
+  - load
+  - ip_address
+
+
+# Assign NFS/TFTP Server Hostname
+- name: Assign hostnames
+  hostname:
+    name: "{{ management_01 }}"
+  when: inventory_hostname == '192.168.50.113'
+  tags:
+  - management
+  - ip_address
+
+# Copy /etc/hosts file
+- name: Copy /etc/hosts
+  template:
+    src: hosts.j2
+    dest: /etc/hosts
+  tags:
+  - hosts
+
+# Change the root password
+- name: Change the root password
+  user:
+    name: root
+    update_password: always
+    password: "{{ root_password }}"
+  tags:
+    - manage_users
+
+# Create Kubernetes Admin
+- name: Add k8sadmin to cluster
+  user:
+    name: "{{ kubernetes_admin }}"
+    comment: Kubernetes Admin
+    shell: /bin/bash
+    password: "{{ k8s_admin_password}}"
+    groups: sudo
+    append: yes
+    create_home: yes
+    generate_ssh_key: yes
+    ssh_key_bits: 2048
+    ssh_key_file: .ssh/id_rsa
+  tags:
+    - manage_users
+
+# Lock the default ubuntu account
+- name: Lock the default ubuntu account
+  user:
+    name: ubuntu
+    password_lock: yes
+  tags:
+    - manage_users
+
+# Change the login banner
+- name: Change the login banner
+  template:
+    src: issue.j2
+    dest: /etc/issue
+  tags:
+    - banner
+
+# Change SSH login banner path
+- name: Change Banner option in /etc/ssh/sshd_config
+  replace:
+    path: /etc/ssh/sshd_config
+    regexp: '#Banner none'
+    replace: 'Banner /etc/issue'
+  tags:
+    - banner
+
+# Restart sshd service
+- name: Restsart sshd service
+  service:
+    name: sshd
+    state: restarted
+  tags:
+    - banner
+
+  
+