Commit 8d1aa772 authored by Lars Beckers's avatar Lars Beckers
Browse files

ad-server: fix bugs noted on buster upgrade

parent 1e6be847
Pipeline #1594 passed with stage
in 45 seconds
...@@ -10,6 +10,13 @@ ...@@ -10,6 +10,13 @@
tags: tags:
- ad-server - ad-server
- name: ensure winbind is for some reasons installed
apt:
name: winbind
state: present
tags:
- ad-server
- name: figure out if domain is provisioned - name: figure out if domain is provisioned
stat: stat:
path: "/var/lib/samba/sysvol/{{ domain }}" path: "/var/lib/samba/sysvol/{{ domain }}"
......
...@@ -19,7 +19,7 @@ ...@@ -19,7 +19,7 @@
kdc:renewal lifetime = {{ renewal_lifetime }} kdc:renewal lifetime = {{ renewal_lifetime }}
tls enabled = yes tls enabled = yes
tls cafile = /etc/ssl/certs/rwth_chain.pem tls cafile = {{smb_tls_cacert}}
tls keyfile = {{smb_tls_key}} tls keyfile = {{smb_tls_key}}
tls certfile = {{smb_tls_cert}} tls certfile = {{smb_tls_cert}}
......
...@@ -19,8 +19,7 @@ ...@@ -19,8 +19,7 @@
kdc:renewal lifetime = {{ renewal_lifetime }} kdc:renewal lifetime = {{ renewal_lifetime }}
tls enabled = yes tls enabled = yes
tls cafile = {{smb_tls_chain}} tls cafile = {{smb_tls_cacert}}
#tls cafile = /etc/ssl/certs/rwth_chain.pem
tls keyfile = {{smb_tls_key}} tls keyfile = {{smb_tls_key}}
tls certfile = {{smb_tls_cert}} tls certfile = {{smb_tls_cert}}
......
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment