A simple role that both installs and configures ntp.
- Requirements
- Dependencies
- Usage
- Role Variables
- Example Playbook
- Testing and Contributing
- License
- Author Information
None
None
The ntp role has two small components in addition to the base install and config capabilities. These include managing the ntp keys file and managing the ntp leapsecond file. Execution of these two components is handled via the variables ntp_manage_keys and ntp_manage_leapfile. Both the keyfile and leapfile have other additional configuration options that may be tuned for the environment, please see them below in the Role Variables section.
The majority of the role configuration options if not a single type, are managed via hashes; even those that may not have need for key/value pairs.
single depth hash example:
ntp_config_discard:
minimum: 2
average: 3
Will result in this config:
ntp_config_discard minimum 2 average 3
nested hash example
ntp_config_filegen:
loopstats:
file: loopstats
type: day
enable:
peerstats:
file: peerstats
type: day
enable:
Will result in this config:
filegen loopstats file loopstats type day enable
filegen peerstats file peerstats type day enable
| Variable Name | Default | Description |
|---|---|---|
external_dependency_delay |
20 |
The time in seconds between external dependency retries. (repos, keyservers, etc) |
external_dependnecy_retries |
6 |
The number of retries to attempt accessing an external dependency. |
ntp_manage_keyfile |
false |
Enables or disables management of the NTP keyfile |
ntp_manage_leapfile |
true |
Enables or disables management of the NTP leapfile |
ntp_version |
- | The version of NTP to be installed |
| Variable Name | Default | Description |
|---|---|---|
ntp_keys_ids |
- | A nested hash in the form of <key id>: {type: <key type>, key: <key> } |
ntp_keys_file_file |
os specific |
The path to the keyfile. Will populate ntp_config_keys correctly. |
ntp_keys_file_owner |
root |
The owner for the keyfile |
ntp_keys_file_group |
root |
The group for the keyfile |
ntp_keys_file_mode |
0600 |
The mode for the keyfile |
| Variable Name | Default | Description |
|---|---|---|
ntp_leapfile_src |
- | The path to the ntp leapfile on the master to be copied to the target. NOTE: will be preferred over uri. |
ntp_leapfile_uri |
https://www.ietf.org/timezones/data/leap-seconds.list |
The URI to the leapfile to be downloaded by the target |
ntp_leapfile_uri_timeout |
60 |
The timeout for downloading the leapfile from the URI |
ntp_leapfile_uri_user |
- | Optional user credentials to use when accessing the URI |
ntp_leapfile_uri_password |
- | Optional password associated with the ntp_leapfile_uri_user |
ntp_leapfile_file |
/etc/ntp/leapfile-seconds |
Path where the leapfile will be saved |
ntp_leapfile_file_owner |
ntp |
The owner for the leapfile |
ntp_leapfile_file_group |
ntp |
The group for the leapfile |
ntp_leapfile_file_mode |
0644 |
The mode for the leapfile |
| Variable Name | Default | Type |
|---|---|---|
ntp_config_discard |
- | <hash> |
ntp_config_restrict |
see defaults/main.yml | <hash> |
ntp_config_automax |
- | <int> |
ntp_config_controlkey |
- | <int> |
ntp_config_crypto |
- | <hash> |
ntp_config_keys |
- | string |
ntp_config_keysdir |
- | string |
ntp_config_requestkey |
- | <int> |
ntp_config_revoke |
- | <int> |
ntp_config_trustedkey |
- | <hash> |
ntp_config_filegen |
- | <hash> |
ntp_config_statsdir |
- | <hash> |
ntp_config_broadcast |
- | <hash> |
ntp_config_broadcastclient |
- | <hash> |
ntp_config_manycastclient |
- | <hash> |
ntp_config_manycastserver |
- | <hash> |
ntp_config_multicastclient |
- | <hash> |
ntp_config_peer |
- | <hash> |
ntp_config_pool |
- | <hash> |
ntp_config_server |
see defaults/main.yml | <hash> |
ntp_config_fudge |
- | <hash> |
ntp_config_broadcastdelay |
- | <int> |
ntp_config_driftfile |
OS specific | <string> |
ntp_config_disable |
- | <hash> |
ntp_config_enable |
- | <hash> |
ntp_config_interface |
- | <hash> |
ntp_config_leapfile |
- | <string> |
ntp_config_logconfig |
- | <string> |
ntp_config_logfile |
- | <string> |
ntp_config_tinker |
{ panic: 0 } |
<hash> |
ntp_config_trap |
- | <hash> |
<ntp_config_ttl> |
- | <hash> |
---
- hosts: localhost
remote_user: root
roles:
- ntp
vars:
ntp_version: '2.4.6'
ntp_manage_keys: true
ntp_keys_ids:
1:
type: M
key: TestKey
22:
type: M
key: TestKey2
ntp_config_discard:
minimum: 2
average: 3
ntp_config_statsdir: /var/log/ntpstats
ntp_config_filegen:
loopstats:
file: loopstats
type: day
enable:
peerstats:
file: peerstats
type: day
enable:
clockstats:
file: clockstats
type: day
enable:
Please see the CONTRIBUTING.md document in the repo for information regarding testing and contributing.
MIT
Created by Bob Killen, maintained by the Department of Advanced Research Computing and Technical Services at the University of Michigan.