udm_user – Manage posix users on a univention corporate server
udm_user – Manage posix users on a univention corporate server
New in version 2.2.
Synopsis
- This module allows to manage posix users on a univention corporate server (UCS). It uses the python API of the UCS to create a new object or edit it.
Requirements
The below requirements are needed on the host that executes this module.
- Python >= 2.6
Parameters
Parameter | Choices/Defaults | Comments |
---|---|---|
birthday - |
Birthday | |
city - |
City of users business address. | |
country - |
Country of users business address. | |
department_number - |
Department number of users business address.
| |
description - |
Description (not gecos) | |
display_name - |
Display name (not gecos)
| |
- |
Default: [] |
A list of e-mail addresses. |
employee_number - |
Employee number
| |
employee_type - |
Employee type
| |
firstname - |
First name. Required if | |
gecos - |
GECOS | |
groups - |
Default: [] |
POSIX groups, the LDAP DNs of the groups will be found with the LDAP filter for each group as $GROUP: |
home_share - |
Home NFS share. Must be a LDAP DN, e.g.
| |
home_share_path - |
Path to home NFS share, inside the homeShare.
| |
home_telephone_number - |
Default: [] |
List of private telephone numbers.
|
homedrive - |
Windows home drive, e.g. | |
lastname - |
Last name. Required if | |
mail_alternative_address - |
Default: [] |
List of alternative e-mail addresses.
|
mail_home_server - |
FQDN of mail server
| |
mail_primary_address - |
Primary e-mail address
| |
mobile_telephone_number - |
Default: [] |
Mobile phone number
|
organisation - |
Organisation | |
ou - |
Default: "" |
Organizational Unit inside the LDAP Base DN, e.g. |
override_pw_history boolean |
|
Override password history
|
override_pw_length boolean |
|
Override password check
|
pager_telephonenumber - |
Default: [] |
List of pager telephone numbers.
|
password - |
Password. Required if | |
phone - |
List of telephone numbers. | |
position - |
Default: "" |
Define the whole position of users object inside the LDAP tree, e.g. |
postcode - |
Postal code of users business address. | |
primary_group - |
Default: "cn=Domain Users,cn=groups,$LDAP_BASE_DN" |
Primary group. This must be the group LDAP DN.
|
profilepath - |
Windows profile directory | |
pwd_change_next_login - |
|
Change password on next login.
|
room_number - |
Room number of users business address.
| |
samba_privileges - |
Samba privilege, like allow printer administration, do domain join.
| |
samba_user_workstations - |
Allow the authentication only on this Microsoft Windows host.
| |
sambahome - |
Windows home path, e.g. | |
scriptpath - |
Windows logon script. | |
secretary - |
Default: [] |
A list of superiors as LDAP DNs. |
serviceprovider - |
Default: [] |
Enable user for the following service providers. |
shell - |
Default: "/bin/bash" |
Login shell |
state - |
|
Whether the user is present or not. |
street - |
Street of users business address. | |
subpath - |
Default: "cn=users" |
LDAP subpath inside the organizational unit, e.g. |
title - |
Title, e.g. | |
unixhome - |
Default: "/home/$USERNAME" |
Unix home directory |
update_password - added in 2.3 |
Default: "always" |
|
userexpiry - |
Default: "Today + 1 year" |
Account expiry date, e.g. |
username - / required |
User name
|
Examples
# Create a user on a UCS
- udm_user:
name: FooBar
password: secure_password
firstname: Foo
lastname: Bar
# Create a user with the DN
# C(uid=foo,cn=teachers,cn=users,ou=school,dc=school,dc=example,dc=com)
- udm_user:
name: foo
password: secure_password
firstname: Foo
lastname: Bar
ou: school
subpath: 'cn=teachers,cn=users'
# or define the position
- udm_user:
name: foo
password: secure_password
firstname: Foo
lastname: Bar
position: 'cn=teachers,cn=users,ou=school,dc=school,dc=example,dc=com'
Status
- This module is not guaranteed to have a backwards compatible interface. [preview]
- This module is maintained by the Ansible Community. [community]
Authors
- Tobias Rueetschi (@2-B)
© 2012–2018 Michael DeHaan
© 2018–2019 Red Hat, Inc.
Licensed under the GNU General Public License version 3.
https://docs.ansible.com/ansible/2.7/modules/udm_user_module.html