This is a limited proof of concept to search for research data, not a production system.

Search the MIT Libraries

Title: DevOps: Ansible LDAP/Shibboleth Role Release

Type Software Bruce Becker, Marco Fargetta, Chris Lee, Pavlos Daoglou (2014): DevOps: Ansible LDAP/Shibboleth Role Release. Zenodo. Software. https://zenodo.org/record/12359

Authors: Bruce Becker (Meraka Institute, CSIR) ; Marco Fargetta (INFN, Catania division) ; Chris Lee (University of Johanesburg) ; Pavlos Daoglou (AUTH-SCC, Greec) ;

Links

Summary

Pre-release v0.0.3 

In this release, we have new functionality for deploying a fully-integrated Shibboleth identity provider, along with LDAP backend. The `idp-ldap.yml` playbook configures both services, and delpoys the web frontend for the Shibboleth IDP on the identity provider.

New Functionality The playbooks support RedHat 6 clones (CentOS) and Debian 6 (including Ubuntu). Variables for these OSs can be found in `group_vars/{{ ansible_os_family }}.yml`

New functionality with respect to the previous version includes:   1. Shibboleth Identity provider deployment   2. LDAP integration with IdP   3. Web frontend (IDPPublic) deployment and integration

New Ansible Roles 

New Ansible roles have been developed and included in this release

  1. fmarco76.tomcat : provisions the tomcat instance for Shibboleth.   1. fmarco76.firewall : applies the correct iptables for the site services    1. fmarco76.IDPPublic : deployes the web mnanagement interface    1. shibboleth-idp : provisions the Shibboleth identity provider

Using this release

The `idp-ldap.yml` playbook will configure the services at your site, on hosts defined in your inventory. You need to specify certain site-specific variables along with the inventory :  ``` --- server_country:  server_state:  server_location:  server_organization:  organisation:  mail_contact: useradmin_password:  ldap_server: ``` These are used to configure the ldap and shibboleth integration. 

Testing and Feedback This has been tested against the dev site at INFN Catania and the ZAMREN site in Zambia. Please open tickets if there are any issues. 

More information

  • DOI: 10.5281/zenodo.12359

Subjects

  • DevOps, Ansible, Federated Identity, Shibboleth

Dates

  • Publication date: 2014
  • Issued: October 23, 2014

Rights

Much of the data past this point we don't have good examples of yet. Please share in #rdi slack if you have good examples for anything that appears below. Thanks!

Funding Information

AwardnumberAwarduriFunderidentifierFunderidentifiertypeFundername
312582info:eu-repo/grantAgreement/EC/FP7/312582/10.13039/100011102Crossref Funder IDEuropean Commission
306819info:eu-repo/grantAgreement/EC/FP7/306819/10.13039/100011102Crossref Funder IDEuropean Commission

Format

electronic resource

Relateditems

DescriptionItem typeRelationshipUri
IsSupplementTohttps://github.com/AAROC/DevOps/tree/v0.0.3
IsVersionOfhttps://doi.org/10.5281/zenodo.606174
IsPartOfhttps://zenodo.org/communities/sa-einfra-commons
IsPartOfhttps://zenodo.org/communities/zenodo