Skip to content

Commit ef1fb6b

Browse files
clevesqueclevesque
authored
Allow install of krb5 & openldap client libs, for external providers (#109)
* Add missing 'become' parameter for user creation * Add missing 'kdc_host' for set up KRB clients, etc. Signed-off-by: Chuck Levesque <clevesque@users.noreply.github.com>
1 parent ef8bcab commit ef1fb6b

File tree

2 files changed

+8
-8
lines changed

2 files changed

+8
-8
lines changed

pvc_base_prereqs_ext.yml

Lines changed: 5 additions & 5 deletions
Original file line numberDiff line numberDiff line change
@@ -135,7 +135,8 @@
135135

136136
- name: Create local users on ECS Nodes
137137
hosts: ecs_nodes
138-
gather_facts: yes
138+
become: yes
139+
gather_facts: no
139140
tags:
140141
- pvc
141142
- users
@@ -162,7 +163,7 @@
162163

163164
# DB Connectors
164165
- name: Install MySQL Connector
165-
hosts: cloudera_manager, cluster, ecs_nodes
166+
hosts: cloudera_manager, cluster
166167
gather_facts: no
167168
become: yes
168169
roles:
@@ -173,7 +174,7 @@
173174
- full_cluster
174175

175176
- name: Install Oracle Connector
176-
hosts: cloudera_manager, cluster, ecs_nodes
177+
hosts: cloudera_manager, cluster
177178
gather_facts: no
178179
become: yes
179180
roles:
@@ -205,7 +206,7 @@
205206
become: yes
206207
roles:
207208
- role: cloudera.cluster.infrastructure.krb5_client
208-
when: "'krb5_server' in groups"
209+
when: krb5_kdc_host is defined or 'krb5_server' in groups
209210
tags:
210211
- security
211212
- kerberos
@@ -279,7 +280,6 @@
279280
(tls | default(False)
280281
or manual_tls_cert_distribution | default(False))
281282
and not (autotls | default(False))
282-
283283
# ENDBLOCK # NiFi TLS
284284
# STARTBLOCK # Install Cluster Service Infrastructure II
285285

pvc_base_prereqs_int.yml

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -178,7 +178,7 @@
178178
become: yes
179179
roles:
180180
- role: cloudera.cluster.prereqs.kerberos
181-
when: "'krb5_server' in groups" # Only set up if cloudera.cluster has itself provisioned Kerberos
181+
when: krb5_kdc_host is defined or 'krb5_server' in groups
182182
tags:
183183
- kerberos
184184
- prereqs
@@ -198,7 +198,7 @@
198198
# STARTBLOCK # Configure CM
199199

200200
- name: Restart Cloudera Manager Agents
201-
hosts: cloudera_manager, cluster
201+
hosts: cloudera_manager, cluster, ecs_nodes
202202
gather_facts: no
203203
become: yes
204204
tasks:
@@ -211,7 +211,7 @@
211211
- restart_agents
212212

213213
- name: Ensure that the agents are heartbeating
214-
hosts: cloudera_manager, cluster
214+
hosts: cloudera_manager, cluster, ecs_nodes
215215
gather_facts: yes
216216
any_errors_fatal: yes
217217
roles:

0 commit comments

Comments
 (0)