Yacine/configure_oracle
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

maj tags

Browse Source
This commit is contained in:
Yacine31
2021-06-21 00:38:22 +02:00
parent 247488321d
commit fabc0e75e5
8 changed files with 20 additions and 8 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
configure-host-oel7/tasks/grub_configuration.yml
View File

@@ -4,11 +4,11 @@
# --------------------------------------------------- # ---------------------------------------------------
- name: Désactivation de Transparent Hugepages 1/2 (dans grub.conf) - name: Désactivation de Transparent Hugepages 1/2 (dans grub.conf)
shell: grubby --grub2 --remove-args=transparent_hugepage --update-kernel=ALL shell: grubby --grub2 --remove-args=transparent_hugepage --update-kernel=ALL
tags: tphp tags: transparent_huge_page
- name: Désactivation de Transparent Hugepages 2/2 (dans grub.conf) - name: Désactivation de Transparent Hugepages 2/2 (dans grub.conf)
shell: grubby --grub2 --args=transparent_hugepage=never --update-kernel=ALL shell: grubby --grub2 --args=transparent_hugepage=never --update-kernel=ALL
tags: tphp tags: transparent_huge_page
- name: Désactivation de Numa 1/2 (dans grub.conf) - name: Désactivation de Numa 1/2 (dans grub.conf)
shell: grubby --grub2 --remove-args=numa --update-kernel=ALL shell: grubby --grub2 --remove-args=numa --update-kernel=ALL

2
configure-host-oel7/tasks/kernel_configuration.yml
View File

@@ -16,7 +16,7 @@
- { name: net.core.rmem_max, value: 4194304 } - { name: net.core.rmem_max, value: 4194304 }
- { name: net.core.wmem_default, value: 262144 } - { name: net.core.wmem_default, value: 262144 }
- { name: net.core.wmem_max, value: 1048576 } - { name: net.core.wmem_max, value: 1048576 }
tags: sysconfig tags: sysctl.conf
- name: Configuration PAM - name: Configuration PAM
lineinfile: dest=/etc/pam.d/login state=present line="session required pam_limits.so" lineinfile: dest=/etc/pam.d/login state=present line="session required pam_limits.so"

3
configure-host-oel7/tasks/network_configuration.yml
View File

@@ -21,6 +21,7 @@
with_items: with_items:
- { line: "options attempts:2" } - { line: "options attempts:2" }
- { line: "options timeout:1" } - { line: "options timeout:1" }
tags: resolv_conf
- name: Desactivation de IP v6 et ZeroConf (Doc ID 1161144.1) - name: Desactivation de IP v6 et ZeroConf (Doc ID 1161144.1)
lineinfile: dest=/etc/sysconfig/network line="{{ item.line }}" lineinfile: dest=/etc/sysconfig/network line="{{ item.line }}"
@@ -28,6 +29,8 @@
- { line: "NETWORKING_IPV6=no" } - { line: "NETWORKING_IPV6=no" }
- { line: "IPV6INIT=no" } - { line: "IPV6INIT=no" }
- { line: "NOZEROCONF=yes" } - { line: "NOZEROCONF=yes" }
tags: ipv6
- name: desactivation permanente de ipv6 - name: desactivation permanente de ipv6
copy: src=desactivation_ipv6.conf dest=/etc/modprobe.d/desactivation_ipv6.conf copy: src=desactivation_ipv6.conf dest=/etc/modprobe.d/desactivation_ipv6.conf
tags: ipv6

8
configure-host-oel7/tasks/os_configuration.yml
View File

@@ -28,28 +28,31 @@
- xauth - xauth
- xdpyinfo - xdpyinfo
- xfsprogs - xfsprogs
tags: rpm_packages
# --------------------------------------------------- # ---------------------------------------------------
# configuration Linux : Mode panic # configuration Linux : Mode panic
# --------------------------------------------------- # ---------------------------------------------------
- name: Configuratio du mode panic sur perte du / - name: Configuratio du mode panic sur perte du /
shell: free_form="tune2fs -e panic `df -P / |tail -1 | awk '{print $1}'`" shell: free_form="tune2fs -e panic `df -P / |tail -1 | awk '{print $1}'`"
tags: mode_panic
- name: Configuratio du mode panic sur bug du kernel - name: Configuratio du mode panic sur bug du kernel
sysctl: name=kernel.panic_on_oops value=1 state=present reload=yes ignoreerrors=yes sysctl: name=kernel.panic_on_oops value=1 state=present reload=yes ignoreerrors=yes
tags: mode_panic
# --------------------------------------------------- # ---------------------------------------------------
# configuration Linux : Selinux # configuration Linux : Selinux
# --------------------------------------------------- # ---------------------------------------------------
- name: Disactiver Selinux (de façon permanente) - name: Disactiver Selinux (de façon permanente)
selinux: state=disabled selinux: state=disabled
tags: selinux
register: selinux register: selinux
tags: selinux
- name: Disactiver Selinux (runtime) - name: Disactiver Selinux (runtime)
shell: setenforce 0 shell: setenforce 0
tags: selinux
ignore_errors: true ignore_errors: true
tags: selinux
# --------------------------------------------------- # ---------------------------------------------------
# configuration Linux : les services # configuration Linux : les services
@@ -79,4 +82,5 @@
# --------------------------------------------------- # ---------------------------------------------------
- name: configuration du démarrage en mode 3 par défaut - name: configuration du démarrage en mode 3 par défaut
command: systemctl set-default multi-user.target command: systemctl set-default multi-user.target
tags: init3

6
configure-host-oel7/tasks/rlwrap.yml
View File

@@ -4,15 +4,19 @@
- name: Copy du rpm rlwrap OL8 vers le serveur - name: Copy du rpm rlwrap OL8 vers le serveur
copy: src=rlwrap-0.44-1.el8.x86_64.rpm dest=/tmp/rlwrap.x86_64.rpm owner=root mode=644 copy: src=rlwrap-0.44-1.el8.x86_64.rpm dest=/tmp/rlwrap.x86_64.rpm owner=root mode=644
when: ansible_distribution_major_version == '8' when: ansible_distribution_major_version == '8'
tags: rlwrap
- name: Copy du rpm rlwrap OL7 vers le serveur - name: Copy du rpm rlwrap OL7 vers le serveur
copy: src=rlwrap-0.42-1.el7.x86_64.rpm dest=/tmp/rlwrap.x86_64.rpm owner=root mode=644 copy: src=rlwrap-0.42-1.el7.x86_64.rpm dest=/tmp/rlwrap.x86_64.rpm owner=root mode=644
when: ansible_distribution_major_version == '7' when: ansible_distribution_major_version == '7'
tags: rlwrap
- name: Install rlwrap rpm from a local file - name: Install rlwrap rpm from a local file
yum: yum:
name: /tmp/rlwrap.x86_64.rpm name: /tmp/rlwrap.x86_64.rpm
state: present state: present
tags: rlwrap
- name: suppression du rpm rlwrap du serveur - name: suppression du rpm rlwrap du serveur
file: path=/tmp/rlwrap.x86_64.rpm state=absent file: path=/tmp/rlwrap.x86_64.rpm state=absent
tags: rlwrap

1
configure-host-oel7/tasks/secure_configuration.yml
View File

@@ -8,6 +8,7 @@
- name: Sécurisation du vidage mémoire - name: Sécurisation du vidage mémoire
copy: src="00-vidage.conf" dest="/etc/security/limits.d/00-vidage.conf" copy: src="00-vidage.conf" dest="/etc/security/limits.d/00-vidage.conf"
tags: secu_vidage
- name: Application des paramètres de configuration sécurisée - name: Application des paramètres de configuration sécurisée
sysctl: name="{{ item.name }}" sysctl: name="{{ item.name }}"

2
configure-host-oel7/tasks/users_configuration.yml
View File

@@ -16,7 +16,7 @@
- { group: oper, gid: 1002 } - { group: oper, gid: 1002 }
- { group: dgdba, gid: 1007 } - { group: dgdba, gid: 1007 }
- { group: kmdba, gid: 1008 } - { group: kmdba, gid: 1008 }
tags: group tags: create_group
- name: Creation du compte Oracle - name: Creation du compte Oracle
user: name={{ item.username }} group={{ item.primgroup }} groups={{ item.othergroups }} uid={{ item.uid }} generate_ssh_key=yes append=yes state=present password={{ item.passwd }} user: name={{ item.username }} group={{ item.primgroup }} groups={{ item.othergroups }} uid={{ item.uid }} generate_ssh_key=yes append=yes state=present password={{ item.passwd }}

2
readme.txt
View File

@@ -1,10 +1,10 @@
ansible sur le poste à configurer ansible sur le poste à configurer
=== ===
yum install -y wget bzip2 unzip git
$ pwd = /root $ pwd = /root
$ yum install -y wget bzip2 unzip git
# git clone https://github.com/Yacine31/configure_oracle # git clone https://github.com/Yacine31/configure_oracle
$ tar xfj configure_oracle/portable-ansible-v0.4.2-py2.tar.bz2 $ tar xfj configure_oracle/portable-ansible-v0.4.2-py2.tar.bz2
# ln -s ansible ansible-playbook # ln -s ansible ansible-playbook