And if you want to have Ansible do it (setting either ‘off’ or ‘rootdse’ as the value) I’ve used this
- name: Disable FreeIPA anonymous LDAP access community.general.ldap_attrs: dn: cn=config attributes: nsslapd-allow-anonymous-access: 'off' server_uri: ldaps://localhost validate_certs: false bind_dn: cn=Directory Manager bind_pw: '{{ freeipa_directory_manager_password }}'
On Sep 27, 2023, at 11:21 AM, Rob Crittenden via FreeIPA-users freeipa-users@lists.fedorahosted.org wrote:
Marcelo Carvalho via FreeIPA-users wrote:
Hi Florence
Thank you so much.
Questions:
- How do we "type a carriage return at the end?"
- Will just a "\n" suffice, or do we need a "control character?"
- If "control character" is needed how do e embed it on our copy-n-paste? Hitting return for that new line does not work.
You just need an empty line to tell ldapmodify that the current mod request is complete. You can alternatively put this into a file and pass it in that way. EOF is treated as the end as well.
rob _______________________________________________ FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org To unsubscribe send an email to freeipa-users-leave@lists.fedorahosted.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/freeipa-users@lists.fedorahoste... Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue