# Generated by Anaconda 34.25.3.8 # Generated by pykickstart v3.32 #version=RHEL9 # Use graphical install graphical repo --name="AppStream" --baseurl=http://imap.modemna.net/iso/AppStream %addon com_redhat_kdump --disable %end # Keyboard layouts keyboard --xlayouts='es (winkeys)','us' # System language lang en_US.UTF-8 # Network information network --bootproto=static --device=ens192 --gateway=192.168.1.253 --ip=192.168.1.222 --nameserver=192.168.1.8,192.168.1.25 --netmask=255.255.255.0 --ipv6=auto --activate --ipv4-dns-search=modemna.net,aragon.local network --hostname=ad2.modemna.net # Use CDROM installation media url --url="http://imap.modemna.net/iso" %packages @^minimal-environment %end # Run the Setup Agent on first boot firstboot --enable # Generated using Blivet version 3.6.0 ignoredisk --only-use=sda # Partition clearing information clearpart --none --initlabel # Disk partitioning information part pv.408 --fstype="lvmpv" --ondisk=sda --size=14758 part /boot/efi --fstype="efi" --size=600 --fsoptions="umask=0077,shortname=winnt" part /boot --fstype="xfs" --size=1024 volgroup vg_root --pesize=4096 pv.408 logvol / --fstype="xfs" --size=13116 --name=root --vgname=vg_root logvol swap --fstype="swap" --size=2083 --name=swap --vgname=vg_root # System timezone timezone Europe/Madrid --utc # Root password rootpw --iscrypted --lock $6$Ht/HWkKeK.Bp.lQd$Ik.mUdt68iZaN1gZddXl8.L.oTmmp30Usx9rzJzLBpGFbDlEzm4WjqAQx5HfYqGy5tm7ZOImDPoSbWt/hvRI40 user --groups=wheel --name=ansible --password=$6$z2QI1hRhvHjnVD7n$OZh3MISgG5DBJTaEtQdTNjBefWg3utDD9WzObJS6xtrPpSNige2MdSWFzwy1XIyVqeYAb8jFbVNdjT/XsBJip/ --iscrypted --gecos="Ansible" %post --interpreter /bin/bash # Get ansible home directory ANSIBLE_HOME="$(getent passwd ansible | cut -d: -f6)" [ -z "$ANSIBLE_HOME" ] && ANSIBLE_HOME="/home/ansible" # Create .ssh directory with correct permissions install -d -m 700 "$ANSIBLE_HOME/.ssh" chown ansible:ansible "$ANSIBLE_HOME/.ssh" # Install Ansible user's public key cat > "$ANSIBLE_HOME/.ssh/authorized_keys" << 'EOF' ssh-rsa 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 Ansible deploys EOF chmod 600 "$ANSIBLE_HOME/.ssh/authorized_keys" chown ansible:ansible "$ANSIBLE_HOME/.ssh/authorized_keys" # Create sudoers drop-in for passwordless sudo cat > /etc/sudoers.d/ansible << 'EOF' ansible ALL=(ALL) NOPASSWD: ALL EOF chmod 440 /etc/sudoers.d/ansible # Validate sudoers syntax; if invalid, remove file to avoid breaking sudo visudo -cf /etc/sudoers.d/ansible || rm -f /etc/sudoers.d/ansible %end