From 01af1d05a2c3d95101921ca8cec9a03d9eea5150 Mon Sep 17 00:00:00 2001
From: Mike Gabriel <mike.gabriel@das-netzwerkteam.de>
Date: Fri, 16 Sep 2022 23:04:08 +0200
Subject: initial puppet.LW configuration

---
 .../production/modules/krb5hostkeytab/manifests/init.pp | 17 +++++++++++++++++
 1 file changed, 17 insertions(+)
 create mode 100644 code/environments/production/modules/krb5hostkeytab/manifests/init.pp

(limited to 'code/environments/production/modules/krb5hostkeytab/manifests/init.pp')

diff --git a/code/environments/production/modules/krb5hostkeytab/manifests/init.pp b/code/environments/production/modules/krb5hostkeytab/manifests/init.pp
new file mode 100644
index 0000000..e3165b1
--- /dev/null
+++ b/code/environments/production/modules/krb5hostkeytab/manifests/init.pp
@@ -0,0 +1,17 @@
+class krb5hostkeytab {
+
+	file { "/etc/krb5.keytab":
+		mode => "0600",
+		owner => 'root',
+		group => 'root',
+		source => "puppet:///modules/krb5hostkeytab/${trusted[certname]}.keytab",
+	}
+
+	service { 'rpc-gssd.service':
+		provider => systemd,
+		ensure => running,
+		enable => true,
+		subscribe => File['/etc/krb5.keytab'],
+	}
+
+}
-- 
cgit v1.2.3