Add user homes on CIFS on Linux

2025-08-31 23:36:23 +02:00 · 2025-08-31 23:36:23 +02:00 · 957cd67eb7
commit 957cd67eb7
parent beb1dbb757
4 changed files with 76 additions and 15 deletions
--- a/roles/ad_joined/tasks/main_lin.yml
+++ b/roles/ad_joined/tasks/main_lin.yml
@ -1,21 +1,35 @@
- name: Enable create homedir on login
-  command: pam-auth-update --enable mkhomedir
-  become: true
+- name: Install required packages
+  apt:
+    name:
+      - realmd
+      - sssd
+      - libpam-mount
+      - heimdal-clients
+
+- name: Remove krb5-user
+  apt:
+    name:
+      krb5-user
+    state: absent
+
+- name: Set OU
+  set_fact:
+    ou_path: "OU={{locations[0]}},OU=Ucilnice"
+
+- name: Show state
+  debug:
+    msg: "Host: {{inventory_hostname}}, OU: {{ou_path}}"
+  # - import_tasks: ne_sysprep.yaml
+
+- name: "Rename"
+  # Racunalnik najprej preimenujmo, da ne bosta v domeni obenem 2 z istim imenom
+  hostname:
+    name: "{{inventory_hostname}}"
+  register: hostname_res
+
 - name: Check whether we already joined
  command: /bin/bash -c "/usr/sbin/realm list"
  register: realm_list_results
-  - name: Set OU
-    set_fact:
-      ou_path: "OU={{locations[0]}},OU=Ucilnice"
-  - name: Show state
-    debug:
-      msg: "Host: {{inventory_hostname}}, OU: {{ou_path}}"
-  # - import_tasks: ne_sysprep.yaml
-  - name: "Rename"
-    # Racunalnik najprej preimenujmo, da ne bosta v domeni obenem 2 z istim imenom
-    hostname:
-      name: "{{inventory_hostname}}"
-    register: hostname_res

 - name: Join using realmd
  expect:
@ -32,3 +46,20 @@
    owner: root
    mode: 0600

+- name: Configure libpam-mount
+  copy:
+    src: pam_mount.conf.xml
+    dest: /etc/security/pam_mount.conf.xml
+
+- name: Enable libpam-mount
+  command: pam-auth-update --enable libpam-mount
+  become: true
+
+- name: Disable libpam-mkhomedir
+  command: pam-auth-update --disable mkhomedir
+  become: true
+
+- name: Restart sssd
+  service:
+    name: sssd
+    state: restarted