ansible_ssh_user
|
This variable sets the SSH user for the installer to use and defaults to
root . This user should allow SSH-based authentication
without requiring a password. If
using SSH key-based authentication, then the key should be managed by an SSH
agent. |
ansible_become
|
If ansible_ssh_user is not root , this variable must be set to true and
the user must be configured for passwordless sudo . |
debug_level
|
This variable sets which INFO messages are logged to the systemd-journald.service . Set one of the following:
-
0 to log errors and warnings only
-
2 to log normal information (This is the default level.)
-
4 to log debugging-level information
-
6 to log API-level debugging information (request / response)
-
8 to log body-level API debugging information
|
containerized
|
If set to true , containerized OpenShift Container Platform services are run on all target master
and node hosts in the cluster instead of installed using RPM packages. If set to
false or unset, the default RPM method is used. RHeL Atomic Host requires the
containerized method, and is automatically selected for you based on the
detection of the /run/ostree-booted file. See
Installing on
Containerized Hosts for more details.
Containerized installations are supported starting in OpenShift Container Platform 3.1.1. |
openshift_master_admission_plugin_config
|
This variable sets the parameter and arbitrary JSON values as per the requirement in your inventory hosts file. For example:
openshift_master_admission_plugin_config={"ClusterResourceOverride":{"configuration":{"apiVersion":"v1","kind":"ClusterResourceOverrideConfig","memoryRequestToLimitPercent":"25","cpuRequestToLimitPercent":"25","limitCPUToMemoryPercent":"200"}}}
|
openshift_master_audit_config
|
This variable enables API service auditing. See
Audit
Configuration for more information. |
openshift_master_cluster_hostname
|
This variable overrides the host name for the cluster, which defaults to the
host name of the master. |
openshift_master_cluster_public_hostname
|
This variable overrides the public host name for the cluster, which defaults to
the host name of the master. If you use an external load balancer, specify the address of the external load balancer.
For example:
----
openshift_master_cluster_public_hostname=openshift-ansible.public.example.com
---- |
openshift_master_cluster_method
|
Optional. This variable defines the HA method when deploying multiple masters.
Supports the native method. See Multiple Masters for
more information. |
openshift_rolling_restart_mode
|
This variable enables rolling restarts of HA masters (i.e., masters are taken
down one at a time) when
running
the upgrade playbook directly. It defaults to services , which allows rolling
restarts of services on the masters. It can instead be set to system , which
enables rolling, full system restarts and also works for single master clusters. |
os_sdn_network_plugin_name
|
This variable configures which
OpenShift SDN plug-in to
use for the pod network, which defaults to redhat/openshift-ovs-subnet for the
standard SDN plug-in. Set the variable to redhat/openshift-ovs-multitenant to
use the multitenant plug-in. |
openshift_master_identity_providers
|
This variable sets the
identity provider.
The default value is
Deny
All. If you use a supported identity provider, configure OpenShift Container Platform to
use it. |
openshift_master_named_certificates
|
These variables are used to configure custom certificates which are deployed as part of the installation. See Configuring Custom Certificates for more information. |
openshift_master_overwrite_named_certificates
|
openshift_hosted_router_certificate
|
Provide the location of the
custom certificates
for the hosted router. |
openshift_hosted_registry_cert_expire_days
|
Validity of the auto-generated registry certificate in days. Defaults to 730 (2 years). |
openshift_ca_cert_expire_days
|
Validity of the auto-generated CA certificate in days. Defaults to 1825 (5 years). |
openshift_node_cert_expire_days
|
Validity of the auto-generated node certificate in days. Defaults to 730 (2 years). |
openshift_master_cert_expire_days
|
Validity of the auto-generated master certificate in days. Defaults to 730 (2 years). |
etcd_ca_default_days
|
Validity of the auto-generated separate etcd certificates in days. Controls
validity for etcd CA, peer, server and client certificates. Defaults to 1825
(5 years). |
os_firewall_use_firewalld
|
Set to true to use firewalld instead of the default iptables. Not available on RHeL Atomic Host. See the Configuring the Firewall section for more information. |
openshift_master_session_name
|
These variables override defaults for
session
options in the OAuth configuration. See Configuring Session Options for more information. |
openshift_master_session_max_seconds
|
openshift_master_session_auth_secrets
|
openshift_master_session_encryption_secrets
|
openshift_portal_net
|
This variable configures the subnet in which
services
will be created within the
OpenShift Container Platform
SDN. This network block should be private and must not conflict with any
existing network blocks in your infrastructure to which pods, nodes, or the
master may require access to, or the installation will fail. Defaults to
172.30.0.0/16 , and cannot be re-configured after deployment. If changing from the default, avoid 172.17.0.0/16 , which the docker0 network bridge uses by default, or modify the docker0 network. |
openshift_master_default_subdomain
|
This variable overrides the default subdomain to use for exposed
routes. |
openshift_master_image_policy_config
|
Sets imagePolicyConfig in the master configuration. See Image Configuration for details. |
openshift_node_proxy_mode
|
This variable specifies the
service
proxy mode to use: either iptables for the default, pure-iptables
implementation, or userspace for the user space proxy. |
openshift_router_selector
|
Default node selector for automatically deploying router pods. See
Configuring Node Host Labels for details. |
openshift_registry_selector
|
Default node selector for automatically deploying registry pods. See
Configuring Node Host Labels for details. |
openshift_template_service_broker_namespaces
|
This variable enables the template service broker by specifying one or more
namespaces whose templates will be served by the broker. |
template_service_broker_selector
|
Default node selector for automatically deploying template service broker pods,
for example: {"region": "infra"} . See
Configuring Node Host Labels for details. |
osm_default_node_selector
|
This variable overrides the node selector that projects will use by default
when placing pods. |
osm_cluster_network_cidr
|
This variable overrides the
SDN
cluster network CIDR block. This is the network from which pod IPs are
assigned. This network block should be a private block and must not conflict
with existing network blocks in your infrastructure to which pods, nodes, or the
master may require access. Defaults to 10.128.0.0/14 and cannot be arbitrarily
re-configured after deployment, although certain changes to it can be made in
the SDN
master configuration. |
osm_host_subnet_length
|
This variable specifies the size of the per host subnet allocated for pod IPs
by
OpenShift Container Platform
SDN. Defaults to 9 which means that a subnet of size /23 is allocated to each
host; for example, given the default 10.128.0.0/14 cluster network, this will
allocate 10.128.0.0/23, 10.128.2.0/23, 10.128.4.0/23, and so on. This cannot be
re-configured after deployment. |
openshift_use_flannel
|
This variable enables flannel as an alternative networking layer instead of
the default SDN. If enabling flannel, disable the default SDN with the
openshift_use_openshift_sdn variable. For more information, see Using Flannel. |
openshift_docker_additional_registries
|
OpenShift Container Platform adds the specified additional registry or registries to the
docker configuration. These are the registries to search. |
openshift_docker_insecure_registries
|
OpenShift Container Platform adds the specified additional insecure registry or registries to
the docker configuration. For any of these registries, secure sockets layer
(SSL) is not verified. Also, add these registries to
openshift_docker_additional_registries . |
openshift_docker_blocked_registries
|
OpenShift Container Platform adds the specified blocked registry or registries to the
docker configuration. Block the listed registries. Setting this to all
blocks everything not in the other variables. |
openshift_metrics_hawkular_hostname
|
This variable sets the host name for integration with the metrics console by
overriding metricsPublicURL in the master configuration for cluster metrics.
If you alter this variable, ensure the host name is accessible via your router.
See Configuring Cluster Metrics for
details. |
openshift_image_tag
|
Use this variable to specify a container image tag to install or configure. |
openshift_pkg_version
|
Use this variable to specify an RPM version to install or configure. |