diff options
Diffstat (limited to 'ansible/roles/dc03/tasks')
| -rw-r--r-- | ansible/roles/dc03/tasks/main.yaml | 3 | ||||
| -rw-r--r-- | ansible/roles/dc03/tasks/populate_ad.yaml | 7 | ||||
| -rw-r--r-- | ansible/roles/dc03/tasks/setup_defender_gpo.yaml | 5 | ||||
| -rw-r--r-- | ansible/roles/dc03/tasks/setup_domain.yaml | 6 | ||||
| -rw-r--r-- | ansible/roles/dc03/tasks/setup_gpo.yaml | 5 |
5 files changed, 11 insertions, 15 deletions
diff --git a/ansible/roles/dc03/tasks/main.yaml b/ansible/roles/dc03/tasks/main.yaml index e487caf..63485ba 100644 --- a/ansible/roles/dc03/tasks/main.yaml +++ b/ansible/roles/dc03/tasks/main.yaml @@ -23,6 +23,9 @@ - name: execute dc-wait-for-ready.ps1 import_tasks: wait_for_ready.yaml +- name: execute setup-gpo.ps1 as domain admin + import_tasks: setup_gpo.yaml + - name: execute setup-defender-gpo.ps1 as domain admin import_tasks: setup_defender_gpo.yaml diff --git a/ansible/roles/dc03/tasks/populate_ad.yaml b/ansible/roles/dc03/tasks/populate_ad.yaml deleted file mode 100644 index e65ab64..0000000 --- a/ansible/roles/dc03/tasks/populate_ad.yaml +++ /dev/null @@ -1,7 +0,0 @@ -- name: execute populate-ad.ps1 - ansible.windows.win_powershell: - script: C:\scripts\populate-ad.ps1 - parameters: - DomainName: "{{ main_domain_name }}" - UserPassword: "{{ default_win_user_password }}" - SvcPassword: "{{ default_win_svc_password }}" diff --git a/ansible/roles/dc03/tasks/setup_defender_gpo.yaml b/ansible/roles/dc03/tasks/setup_defender_gpo.yaml index 9813f7b..fe4d6de 100644 --- a/ansible/roles/dc03/tasks/setup_defender_gpo.yaml +++ b/ansible/roles/dc03/tasks/setup_defender_gpo.yaml @@ -1,5 +1,8 @@ - name: execute setup-defender-gpo.ps1 as domain admin - ansible.windows.win_command: powershell.exe -ExecutionPolicy Bypass -File C:\scripts\setup-defender-gpo.ps1 -DomainName "{{ child_domain_name }}" + ansible.windows.win_shell: > + powershell.exe -ExecutionPolicy Bypass + -File C:\scripts\setup-defender-gpo.ps1 + -DomainName "{{ child_domain_name }}" become: yes become_method: runas become_user: "{{ child_domain_name }}\\Administrator" diff --git a/ansible/roles/dc03/tasks/setup_domain.yaml b/ansible/roles/dc03/tasks/setup_domain.yaml deleted file mode 100644 index 64ab8c0..0000000 --- a/ansible/roles/dc03/tasks/setup_domain.yaml +++ /dev/null @@ -1,6 +0,0 @@ -- name: execute setup-main-domain.ps1 - ansible.windows.win_powershell: - script: C:\scripts\setup-main-domain.ps1 - parameters: - DomainName: "{{ child_domain_name }}" - SafeModePassword: "{{ default_win_safemode_password }}" diff --git a/ansible/roles/dc03/tasks/setup_gpo.yaml b/ansible/roles/dc03/tasks/setup_gpo.yaml index fc44130..0b25ef9 100644 --- a/ansible/roles/dc03/tasks/setup_gpo.yaml +++ b/ansible/roles/dc03/tasks/setup_gpo.yaml @@ -1,5 +1,8 @@ - name: execute setup-gpo.ps1 as domain admin - ansible.windows.win_command: powershell.exe -ExecutionPolicy Bypass -File C:\scripts\setup-gpo.ps1 -DomainName "{{ main_domain_name }}" + ansible.windows.win_shell: > + powershell.exe -ExecutionPolicy Bypass + -File C:\scripts\setup-gpo.ps1 + -DomainName "{{ main_domain_name }}" become: yes become_method: runas become_user: "{{ main_domain_name }}\\Administrator" |