Note: This bug is displayed in read-only format because the product is no longer active in Red Hat Bugzilla.
RHEL Engineering is moving the tracking of its product development work on RHEL 6 through RHEL 9 to Red Hat Jira (issues.redhat.com). If you're a Red Hat customer, please continue to file support cases via the Red Hat customer portal. If you're not, please head to the "RHEL project" in Red Hat Jira and file new tickets here. Individual Bugzilla bugs in the statuses "NEW", "ASSIGNED", and "POST" are being migrated throughout September 2023. Bugs of Red Hat partners with an assigned Engineering Partner Manager (EPM) are migrated in late September as per pre-agreed dates. Bugs against components "kernel", "kernel-rt", and "kpatch" are only migrated if still in "NEW" or "ASSIGNED". If you cannot log in to RH Jira, please consult article #7032570. That failing, please send an e-mail to the RH Jira admins at rh-issues@redhat.com to troubleshoot your issue as a user management inquiry. The email creates a ServiceNow ticket with Red Hat. Individual Bugzilla bugs that are migrated will be moved to status "CLOSED", resolution "MIGRATED", and set with "MigratedToJIRA" in "Keywords". The link to the successor Jira issue will be found under "Links", have a little "two-footprint" icon next to it, and direct you to the "RHEL project" in Red Hat Jira (issue links are of type "https://issues.redhat.com/browse/RHEL-XXXX", where "X" is a digit). This same link will be available in a blue banner at the top of the page informing you that that bug has been migrated.

Bug 1716039

Summary: [RFE] Create an ansible role for setting up a tang server.
Product: Red Hat Enterprise Linux 8 Reporter: Thorsten Scherf <tscherf>
Component: tangAssignee: Sergio Correia <scorreia>
Status: CLOSED CURRENTRELEASE QA Contact: Martin Zelený <mzeleny>
Severity: unspecified Docs Contact: Khushbu Borole <kborole>
Priority: high    
Version: 8.0CC: dapospis, jafiala, kborole, lmanasko, mjahoda, mzeleny, scorreia, tjaros
Target Milestone: rcKeywords: FutureFeature, Tracking, Triaged
Target Release: 8.2Flags: pm-rhel: mirror+
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: Enhancement
Doc Text:
.New Ansible role can now set up a Tang server With this enhancement, you can deploy and manage a Tang server as part of an automated disk encryption solution with the new `nbde_server` system role. The `nbde_server` Ansible role, which is included in the `rhel-system-roles` package, supports the following features: * Rotating Tang keys * Deploying and backing up Tang keys For more information, see link:https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/security_hardening/configuring-automated-unlocking-of-encrypted-volumes-using-policy-based-decryption_security-hardening#rotating-tang-keys_configuring-automated-unlocking-of-encrypted-volumes-using-policy-based-decryption[Rotating Tang server keys].
 Story Points: ---
Clone Of: Environment:
Last Closed: 2021-05-26 05:57:46 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 1822173    

Description Thorsten Scherf 2019-06-01 08:42:23 UTC 
Description of problem:

Please provide an Ansible role for setting up a tang server.

Version-Release number of selected component (if applicable):


How reproducible:


Steps to Reproduce:
1.
2.
3.

Actual results:


Expected results:


Additional info:
Comment 1 Sergio Correia 2020-01-17 10:48:06 UTC 
Role is called nbde_server, and is currently in the linux-system-roles github upstream: https://github.com/linux-system-roles/nbde_server
Comment 12 CongLi 2021-05-26 05:57:46 UTC 
Since the issue described in this bug should be resolved (VERIFIED), it has been closed with a resolution of CURRENTRELEASE.

If the fix for this is not released yet, check if this will ever get fixed. In case of a negative answer (ex: for  zstream releases that won't be updated anymore) then please change it as WONTFIX.

If there's anything else to be done on this BZ, if it's still active, please reopen this bug with comment.

Please note: for those bugs which are not included in errata, please add keyword 'TestOnly'.
TestOnly: Use this when there is no code delivery involved, or for use when code is already upstream and will be incorporated automatically to the next release for testing purposes only.

Thank you.