Version information
released Sep 22nd 2017
Start using this module
Add this module to your Puppetfile:
mod 'epflsti-epfl_sso', '0.4.8'
Learn more about managing modules with a PuppetfileDocumentation
epflsti/epfl_sso — version 0.4.8 Sep 22nd 2017
puppet.epfl_sso
UNIX single sign-on using EPFL's LDAP and Kerberos servers
Apply one-shot
Install Puppet standalone then, as root:
puppet module install epflsti-epfl_sso
# Install the modulepuppet apply -e "class { 'quirks': } class { 'quirks::pluginsync': }"
# Repeat if prompted to- Then, apply the epfl_sso class: puppet apply -e "class { 'epfl_sso': allowed_users_and_groups => 'user1 user2 (group1) (group2)', join_domain => 'OU=IEL-GE-Servers,OU=IEL-GE,OU=IEL,OU=STI', auth_source => 'AD', directory_source => 'AD' }"
- And if you want NFS connectivity too: puppet apply -e "class { 'epfl_sso::nfs': }"
Note: user1
& user2
are GASPAR usernames (or local account) and group1
and group2
are EPFL groups which are visible in ldap.epfl.ch, in example:
puppet apply -e "class { 'epfl_sso': allowed_users_and_groups => 'admin nborboen (stiitlinux)' }"
where admin
is a local account, nborboen
a GASPAR username and stiitlinux
a EPFL group.
Applying the latest version
(in case the one on puppet lab is now up-to-date; please try the one-shot method first !)
The git clone method
- Be sure to remove previous version:
puppet module uninstall epflsti-epfl_sso
(add--ignore-changes
if needed) - Go in the puppet folder:
cd /etc/puppet/module
- Remove
epfl_sso
(but it should have been done from step 1) - Clone the repo here:
git clone https://github.com/epfl-sti/puppet.epfl_sso.git /etc/puppet/module/epfl_sso
- Apply one-shot step 3.
The tar.gz method
- Be sure to remove previous version:
puppet module uninstall epflsti-epfl_sso
(add--ignore-changes
if needed) - Clone the repo:
git clone https://github.com/epfl-sti/puppet.epfl_sso.git
- tar the repo:
tar -czvf epfl_sso_latest.tar.gz puppet.epfl_sso
- Install the module:
puppet module install epfl_sso_latest.tar.gz
- Apply one-shot step 3.
Dependencies
- puppetlabs/ntp (>=4.2.0)
- puppetlabs/stdlib (>=4.14.0)
- puppetlabs/inifile (>=1.6.0)
- stm/debconf (>=2.0.0)
- wcooley/name_service (>=0.1.0)
- epflsti/quirks (>=0.1.0)
The MIT License (MIT) Copyright (c) 2015 Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the "Software"), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to the following conditions: The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software. THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.