From 9a7a006fac8929c409b1a64558376d4c1a0000b5 Mon Sep 17 00:00:00 2001
From: Nils Philippsen <nils@redhat.com>
Date: Mar 24 2021 12:44:33 +0000
Subject: ipa/client: enable for kerneltest in prod


Signed-off-by: Nils Philippsen <nils@redhat.com>

---

diff --git a/inventory/group_vars/kerneltest b/inventory/group_vars/kerneltest
index cd3676f..f149e8d 100644
--- a/inventory/group_vars/kerneltest
+++ b/inventory/group_vars/kerneltest
@@ -17,8 +17,7 @@ tcp_ports: [ 80 ]
 # Neeed for rsync from log01 for logs.
 custom_rules: [ '-A INPUT -p tcp -m tcp -s 10.3.163.39 --dport 873 -j ACCEPT', '-A INPUT -p tcp -m tcp -s 192.168.1.59 --dport 873 -j ACCEPT' ]
 
-fas_client_groups: sysadmin-noc,sysadmin-veteran
-
+primary_auth_source: ipa
 ipa_host_group: kerneltest
 ipa_client_shell_groups:
 - sysadmin-noc
diff --git a/playbooks/groups/kerneltest.yml b/playbooks/groups/kerneltest.yml
index 5185b6c..b155b4b 100644
--- a/playbooks/groups/kerneltest.yml
+++ b/playbooks/groups/kerneltest.yml
@@ -20,8 +20,7 @@
   - rkhunter
   - nagios_client
   - hosts
-  - { role: ipa/client, when: env == "staging" }
-  - { role: fas_client, when: env != "staging" }
+  - ipa/client
   - collectd/base
   - rsyncd
   - sudo
@@ -33,7 +32,6 @@
   - import_tasks: "{{ tasks_path }}/yumrepos.yml"
 
   tasks:
-  - import_tasks: "{{ tasks_path }}/2fa_client.yml"
   - import_tasks: "{{ tasks_path }}/motd.yml"
 
   handlers: