Hi,
I saw that in 2.3 ldap_attr and ldap_entry have been added. Is anybody using these to manage users in ldap? Do these module work and are they stable enough? right now we use a bunch of scripts to create users and they are not idempotent nor very user friendly. I’d like to convert that part of the process to ansible, but not sure if it’ll work.
Also in terms of best practices, if you are doing this, are you storing the admin pwd in vault? Are there any other gotchas from experience?
thank you,
Spike