neues krb5.conf eingabaut, ABER...

es fehlen noch die keytabs die neu erstellt wurden. Die müssen noch eingefügt werden

roles/ams_sso/tasks/main.yml

@@ -58,20 +58,20 @@
       owner: root 
       group: root
       mode: '0644'    
-  - name: Template file rsWebserviceAppserver.xml.j2 with owner and permissions 
-    template:
-      src: ./templates/rsWebserviceAppserver.xml.j2
-      dest: /opt/rola/ams/linux/Appserver/config/rsWebserviceAppserver.xml
-      owner: jetty
-      group: dba
-      mode: '0644'
-  - name: Template file rsWebserviceAppserverAdmin.xml.j2 with owner and permissions 
-    template:
-      src: ./templates/rsWebserviceAppserverAdmin.xml.j2
-      dest: /opt/rola/ams/linux/Appserveradmin/config/rsWebserviceAppserver.xml
-      owner: jetty
-      group: dba
-      mode: '0644'     
+  #- name: Template file rsWebserviceAppserver.xml.j2 with owner and permissions 
+    #template:
+      #src: ./templates/rsWebserviceAppserver.xml.j2
+      #dest: /opt/rola/ams/linux/Appserver/config/rsWebserviceAppserver.xml
+      #owner: jetty
+      #group: dba
+      #mode: '0644'
+  #- name: Template file rsWebserviceAppserverAdmin.xml.j2 with owner and permissions 
+    #template:
+      #src: ./templates/rsWebserviceAppserverAdmin.xml.j2
+      #dest: /opt/rola/ams/linux/Appserveradmin/config/rsWebserviceAppserver.xml
+      #owner: jetty
+      #group: dba
+      #mode: '0644'     
   - name: Kdestroy zum löschen der alten Verbindung
     command: /usr/bin/kdestroy
     become: yes

roles/ams_sso/templates/krb5.conf.j2

@@ -9,7 +9,7 @@ includedir /etc/krb5.conf.d/
 [libdefaults]
  dns_lookup_realm = false
  dns_lookup_kdc = false
- kdc_timeout = 10sec
+ kdc_timeout = 5sec
  ticket_lifetime = 24h
  renew_lifetime = 7d
  forwardable = true