trinitor/DetectionLab
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

Convert Exchange to a Terraform module

Browse Source
This commit is contained in:
Chris Long
2021-05-08 15:13:05 -07:00
parent 8c8c7f760c
commit bb41499a27
28 changed files with 112 additions and 85 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
ESXi/ansible/detectionlab.yml
View File

@@ -16,6 +16,12 @@
- common
tags: wef
- hosts: exchange
roles:
- exchange
- common
tags: exchange
- hosts: win10
roles:
- win10

126
ESXi/ansible/roles/exchange/tasks/main.yml Normal file
View File

@@ -0,0 +1,126 @@
---
- name: Hostname -> EXCHANGE
win_hostname:
name: EXCHANGE
register: res
- name: Reboot
win_reboot:
when: res.reboot_required
- name: Set HostOnly IP Address
win_shell: "If (-not(get-netipaddress | where {$_.IPAddress -eq '192.168.38.106'})) {$adapter = (get-netadapter | where {$_.MacAddress -eq '00-50-56-A1-B4-C5'}).Name; New-NetIPAddress InterfaceAlias $adapter AddressFamily IPv4 -IPAddress 192.168.38.106 PrefixLength 24 -DefaultGateway 192.168.38.1 } Else { Write-Host 'IP Address Already Created.' }"
- name: Set HostOnly DNS Address
win_shell: "$adapter = (get-netadapter | where {$_.MacAddress -eq '00-50-56-A1-B4-C5'}).Name; Set-DnsClientServerAddress -InterfaceAlias $adapter -ServerAddresses 192.168.38.102,8.8.8.8"
- name: Install git
win_chocolatey:
name: git
state: present
- name: Check if existing DetectionLab directory
win_stat:
path: 'c:\DetectionLab'
register: dir
- name: Git clone Detectionlab
win_shell: git clone https://github.com/clong/DetectionLab.git
args:
chdir: 'c:\'
when: not dir.stat.exists
- name: Copy scripts to c:\vagrant
win_shell: Copy-Item -Recurse c:\DetectionLab\Vagrant c:\vagrant
- name: Join the Domain
win_shell: .\\provision.ps1
args:
chdir: 'c:\vagrant\scripts'
register: exchange_join_domain
changed_when: "'HasSucceeded : True' in exchange_join_domain.stdout"
- debug: msg="{{ exchange_join_domain.stdout_lines }}"
- name: Reboot After Joining the Domain
win_reboot:
msg: "Joining the domain. Rebooting..."
pre_reboot_delay: 5
reboot_timeout: 600
post_reboot_delay: 60
- name: Install Exchange Prereqs
win_shell: .\\install-exchange.ps1
args:
chdir: 'c:\vagrant\scripts'
register: exchange_prereqs
changed_when: "'A reboot is required to continue installation of exchange.' in exchange_prereqs.stdout"
- name: Reboot After Installing Exchange PreReqs
win_reboot:
msg: "Exchange Prereqs installed. Rebooting..."
pre_reboot_delay: 5
reboot_timeout: 600
post_reboot_delay: 60
- name: Download Exchange ISO and Mount It
win_shell: .\\install-exchange.ps1
args:
chdir: 'c:\vagrant\scripts'
register: download_exchange_iso
- name: Prepare Schema
win_package:
path: E:\Setup.exe
arguments: >-
/IAcceptExchangeServerLicenseTerms
/PrepareSchema
product_id: '{CD981244-E9B8-405A-9026-6AEB9DCEF1F1}'
vars:
ansible_become: yes
ansible_become_method: runas
ansible_become_user: WINDOMAIN.local\Administrator
ansible_become_password: vagrant
register: prepare_schema
- name: Prepare AD
win_package:
path: E:\Setup.exe
arguments: >-
/IAcceptExchangeServerLicenseTerms
/PrepareAD
/OrganizationName: DetectionLab
product_id: '{CD981244-E9B8-405A-9026-6AEB9DCEF1F1}'
vars:
ansible_become: yes
ansible_become_method: runas
ansible_become_user: WINDOMAIN.local\Administrator
ansible_become_password: vagrant
register: prepare_ad
- name: Install Exchange
win_package:
path: E:\Setup.exe
arguments: >-
/IAcceptExchangeServerLicenseTerms
/Mode:Install
/Role:Mailbox
product_id: '{CD981244-E9B8-405A-9026-6AEB9DCEF1F1}'
vars:
ansible_become: yes
ansible_become_method: runas
ansible_become_user: WINDOMAIN.local\Administrator
ansible_become_password: vagrant
register: install_exchange
- name: Reboot after Exchange Installation
win_reboot:
msg: "Exchange installed. Rebooting..."
pre_reboot_delay: 5
reboot_timeout: 600
post_reboot_delay: 60
- name: Clear Event Logs
win_shell: "wevtutil el | Select-String -notmatch \"Microsoft-Windows-LiveId\" | Foreach-Object {wevtutil cl \"$_\"}"

9
ESXi/exchange.tf Normal file
View File

@@ -0,0 +1,9 @@
## Remove the block comment to enable the creation of the Exchange server
/*
module "exchange" {
source = "./modules/exchange"
disk_store = var.esxi_datastore
vm_network = var.vm_network
hostonly_network = var.hostonly_network
}
*/

37
ESXi/modules/exchange/main.tf Normal file
View File

@@ -0,0 +1,37 @@
terraform {
required_version = ">= 0.13"
required_providers {
esxi = {
source = "josenk/esxi"
version = "1.8.0"
}
}
}
resource "esxi_guest" "exchange" {
guest_name = "exchange"
disk_store = var.disk_store
guestos = "windows9srv-64"
boot_disk_type = "thin"
memsize = "8192"
numvcpus = "4"
resource_pool_name = "/"
power = "on"
clone_from_vm = "WindowsServer2016"
# This is the network that bridges your host machine with the ESXi VM
network_interfaces {
virtual_network = var.vm_network
mac_address = "00:50:56:a1:b2:c5"
nic_type = "e1000"
}
# This is the local network that will be used for 192.168.38.x addressing
network_interfaces {
virtual_network = var.hostonly_network
mac_address = "00:50:56:a1:b4:c5"
nic_type = "e1000"
}
guest_startup_timeout = 45
guest_shutdown_timeout = 30
}

7
ESXi/modules/exchange/outputs.tf Normal file
View File

@@ -0,0 +1,7 @@
output "exchange_interfaces" {
value = esxi_guest.exchange.network_interfaces
}
output "exchange_ips" {
value = esxi_guest.exchange.ip_address
}

11
ESXi/modules/exchange/variables.tf Normal file
View File

@@ -0,0 +1,11 @@
variable "vm_network" {
default = "VM Network"
}
variable "hostonly_network" {
default = "HostOnly Network"
}
variable "disk_store" {
type = string
}