1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18
|
# platform = multi_platform_ol,multi_platform_rhel,multi_platform_fedora,multi_platform_almalinux
# reboot = false
# strategy = configure
# complexity = low
# disruption = medium
{{{ bash_instantiate_variables("var_sssd_certificate_verification_digest_function") }}}
# sssd configuration files must be created with 600 permissions if they don't exist
# otherwise the sssd module fails to start
OLD_UMASK=$(umask)
umask u=rw,go=
MAIN_CONF="/etc/sssd/conf.d/certificate_verification.conf"
{{{ bash_ensure_ini_config("$MAIN_CONF /etc/sssd/sssd.conf /etc/sssd/conf.d/*.conf", "sssd", "certificate_verification", "ocsp_dgst=$var_sssd_certificate_verification_digest_function") }}}
umask $OLD_UMASK
|