Skip to content

Latest commit

 

History

History
185 lines (141 loc) · 5.01 KB

README.md

File metadata and controls

185 lines (141 loc) · 5.01 KB

ROLE ICINGA2_WEB

image

image

image

This role installs and configures icingaweb2.

Requirements

What you will need to benefit from this role is a webserver installed on the system. At Adfinis, we use the following role:

Role dependencies

This role has the following dependencies:

roles:
- name: 'adfinis.icinga2_agent'

collections:
  - ansible.posix
  - community.general
  - community.mysql
  - robertdebock.roles

For all dependencies to be correcty installed, you need to create a requirements.yml in your project with the content above.

Role Variables

# The icingaweb2 web ui password
icinga2_web_admin_pass: 'passw0rd'

# icinga2 API host
icinga2_web_api_host: 127.0.0.1

# icinga2 API port
icinga2_web_api_port: 5665

# icinga2 API user
icinga2_web_api_user: icingaweb2

# icinga2 API password
icinga2_web_api_pass: 'passw0rd'


## icingaweb2 database settings
# The icingaweb2 database name
icinga2_web_icingaweb2_database_name: icingaweb2

# The icingaweb2 database user
icinga2_web_icingaweb2_database_user: icingaweb2

# The icingaweb2 database password
icinga2_web_icingaweb2_database_pass: 'passw0rd'

# The icingaweb2 database host
icinga2_web_icingaweb2_database_host: 127.0.0.1

# The icingaweb2 database port
icinga2_web_icingaweb2_database_port: 3306


## Icinga2 database settings
# icinga2 database name
icinga2_web_icinga2_database_name: icinga2
#
# icinga2 database host
icinga2_web_icinga2_database_host: 127.0.0.1

# icinga2 database port
icinga2_web_icinga2_database_port: 3306

# icinga2 database user
icinga2_web_icinga2_database_user: icinga2

# icinga2 database password
icinga2_web_icinga2_database_pass: 'passw0rd'

LDAP Authentication

To configure LDAP authentication, the following variables MUST be configured. It is possible to enable multiple configuration backends.

# Icingaweb2 LDAP authentication
# For further information, consult the official icingaweb2 documentation at
# https://icinga.com/docs/icingaweb2/latest/doc/04-Resources/#ldap
#icinga2_web_ldap:
#  - name: res_ldap_example_com
#    host: ldap.example.com
#    port: 636
#    encryption: ldaps
#    root_dn: 'cn=accounts,dc=ldap,dc=example,dc=com'
#    bind_dn: 'uid=icingaweb2.auth,cn=systems,dc=ldap,dc=example,dc=com'
#    bind_pw: 'ldap password'
#    timeout: 5
# Icingaweb2 LDAP User configuration
# For further information, consult the official icingaweb2 documentation at
# https://icinga.com/docs/icingaweb2/latest/doc/05-Authentication/#ldap
#
#icinga2_web_ldap_userconf:
#  - name: user_ldap_example_com # required
#    resource: 'res_ldap_example_com' # required
#    user_class: 'inetOrgPerson' # required
#    user_name_attribute: 'uid' # required
#    base_dn: 'cn=accounts,dc=ldap,dc=example,dc=com' # optional
#    filter: "(somefilter)" # optional

icinga2_web_ldap_userconf: []
# Icingaweb2 LDAP Group configuration
# For further information, consult the official icingaweb2 documentation at
# https://icinga.com/docs/icingaweb2/latest/doc/05-Authentication/#ldap-groups
#
#icinga2_web_ldap_groupconf:
#  - name: group_ldap_example_com # required
#    resource: 'res_ldap_example_com' # required
#    user_backend = "user_ldap_examle_com" # required
#    user_class: 'user' # optional
#    user_name_attribute: 'uid' # optional
#    group_class: 'group' # optional
#    group_name_attribute: 'gid' # optional
#    group_member_attribute: 'memberUid' # optional
#    group_filter: '(somefilter)' # optional

Icingaweb2 permissions

# Icinga2 Permissions configuration
# For further information, consult the official icingaweb2 documentation at
# https://icinga.com/docs/icingaweb2/latest/doc/06-Security/#configuration
#
#icinga2_web_permissions:
#  - name: Administrators
#    users:
#      - admin
#    groups:
#      - Administrators
#    permissions:
#      '*'
#    object_filter: ""
#  - name: customer
#    users:
#      - customer1
#    permissions:
#      'monitoring/command/*,module/*'
#    object_filter: 'host_name=*.customer.example.com"'

Example Playbook

- hosts: servers
  roles:
     - { role: adfinis.icinga2_web }

License

GPL-3.0

Author Information

icinga2_web role was written by: