#!/usr/bin/python # -*- coding: utf-8 -*- # Copyright: (c) 2017, Red Hat, Inc. # GNU General Public License v3.0+ (see COPYING or https://www.gnu.org/licenses/gpl-3.0.txt) DOCUMENTATION = r''' module: win_domain short_description: Ensures the existence of a Windows domain description: - Ensure that the domain named by C(dns_domain_name) exists and is reachable. - If the domain is not reachable, the domain is created in a new forest on the target Windows Server 2012R2+ host. - This module may require subsequent use of the M(ansible.windows.win_reboot) action if changes are made. deprecated: removed_in: 3.0.0 why: This module has been moved into the C(microsoft.ad) collection. alternative: Use the M(microsoft.ad.domain) module instead. options: dns_domain_name: description: - The DNS name of the domain which should exist and be reachable or reside on the target Windows host. type: str required: yes domain_netbios_name: description: - The NetBIOS name for the root domain in the new forest. - For NetBIOS names to be valid for use with this parameter they must be single label names of 15 characters or less, if not it will fail. - If this parameter is not set, then the default is automatically computed from the value of the I(domain_name) parameter. type: str safe_mode_password: description: - Safe mode password for the domain controller. type: str required: yes database_path: description: - The path to a directory on a fixed disk of the Windows host where the domain database will be created. - If not set then the default path is C(%SYSTEMROOT%\NTDS). type: path log_path: description: - Specifies the fully qualified, non-UNC path to a directory on a fixed disk of the local computer where the log file for this operation is written. - If not set then the default path is C(%SYSTEMROOT%\NTDS). type: path sysvol_path: description: - The path to a directory on a fixed disk of the Windows host where the Sysvol file will be created. - If not set then the default path is C(%SYSTEMROOT%\SYSVOL). type: path create_dns_delegation: description: - Whether to create a DNS delegation that references the new DNS server that you install along with the domain controller. - Valid for Active Directory-integrated DNS only. - The default is computed automatically based on the environment. type: bool domain_mode: description: - Specifies the domain functional level of the first domain in the creation of a new forest. - The domain functional level cannot be lower than the forest functional level, but it can be higher. - The default is automatically computed and set. type: str choices: [ Win2003, Win2008, Win2008R2, Win2012, Win2012R2, WinThreshold ] forest_mode: description: - Specifies the forest functional level for the new forest. - The default forest functional level in Windows Server is typically the same as the version you are running. # - Beware that the default forest functional level in Windows Server 2008 R2 when you create a new forest is C(Win2003). type: str choices: [ Win2003, Win2008, Win2008R2, Win2012, Win2012R2, WinThreshold ] install_dns: description: - Whether to install the DNS service when creating the domain controller. type: bool default: yes seealso: - module: ansible.windows.win_domain_controller - module: community.windows.win_domain_computer - module: community.windows.win_domain_group - module: ansible.windows.win_domain_membership - module: community.windows.win_domain_user author: - Matt Davis (@nitzmahone) ''' RETURN = r''' reboot_required: description: True if changes were made that require a reboot. returned: always type: bool sample: true ''' EXAMPLES = r''' - name: Create new domain in a new forest on the target host ansible.windows.win_domain: dns_domain_name: ansible.vagrant safe_mode_password: password123! - name: Create new Windows domain in a new forest with specific parameters ansible.windows.win_domain: create_dns_delegation: false database_path: C:\Windows\NTDS dns_domain_name: ansible.vagrant domain_mode: Win2012R2 domain_netbios_name: ANSIBLE forest_mode: Win2012R2 safe_mode_password: password123! sysvol_path: C:\Windows\SYSVOL register: domain_install '''