ansible_samba_ad_dc/tasks/install.yml

---
- name: Install required packages
  ansible.builtin.package:  
    name:
      - acl
      - attr
      - samba
      - winbind
      - libpam-winbind 
      - libnss-winbind
      - krb5-config
      - krb5-user
      - dnsutils      
      - python3-setproctitle
      # - smbclient
    state: latest

- name: Stop samba-ad-dc before provisioning (if running)
  ansible.builtin.service:
    name: samba-ad-dc
    state: stopped
    enabled: no
  ignore_errors: yes









# - name: Check if backup exist

# - name: Provision AD domain
#   include_tasks: provision.yml

# - name: Deploy smb.conf
#   ansible.builtin.template:
#     src: smb.conf.j2
#     dest: "{{ samba_conf_path }}"
#     owner: root
#     group: root
#     mode: '0644'
#   notify: Restart Samba AD DC

# - name: Enable and start samba-ad-dc service
#   ansible.builtin.service:
#     name: samba-ad-dc
#     state: started
#     enabled: yes

# - name: Configure Kerberos
#   include_tasks: kerberos.yml

# - name: Set DNS resolver and hosts entry
#   include_tasks: dns_hosts.yml

# - name: Run verification checks
#   include_tasks: verify.yml
#   when: samba_verify | bool