diff options
Diffstat (limited to 'roles/common/tasks/bacula.yml')
| -rw-r--r-- | roles/common/tasks/bacula.yml | 8 |
1 files changed, 8 insertions, 0 deletions
diff --git a/roles/common/tasks/bacula.yml b/roles/common/tasks/bacula.yml index 73a2fa1..fb37b5b 100644 --- a/roles/common/tasks/bacula.yml +++ b/roles/common/tasks/bacula.yml @@ -46,27 +46,35 @@ tags: - genkey - name: Copy the master public key for data encryption copy: src=certs/bacula/data-master.pem dest=/etc/bacula/ssl/master.pem owner=root group=root mode=0644 tags: - genkey - name: Copy bacula-fd.service copy: src=etc/systemd/system/bacula-fd.service dest=/etc/systemd/system/bacula-fd.service owner=root group=root mode=0644 notify: - systemctl daemon-reload - Restart bacula-fd +# We use RuntimeDirectory in our service unit to avoid permission issues +# caused by the restrictive Capability Bounding Set +- name: Mask /usr/lib/tmpfiles.d/bacula.conf + file: src=/dev/null + dest=/etc/tmpfiles.d/bacula.conf + owner=root group=root + state=link + - meta: flush_handlers - name: Enable bacula-fd service: name=bacula-fd enabled=yes - name: Start bacula-fd service: name=bacula-fd state=started |