Anyone can explain "false" below
47 views
Skip to first unread message
davidy
Dec 29, 2021, 11:10:20 AM12/29/21
to Ansible Project
Hi Anyone can explain "false" below. Thank you
sudo nano ansible.cfg
[defaults]
inventory = ./hosts
host_key checking = false
sudo nano ansible.cfg
[defaults]
inventory = ./hosts
host_key checking = false
Jack Morgan
Dec 29, 2021, 11:24:47 AM12/29/21
to ansible...@googlegroups.com
"Set this to “False” if you want to avoid host key checking by
the underlying tools Ansible uses to connect to the host" per the
link below. Most commonly used for SSH connections.
https://docs.ansible.com/ansible/latest/reference_appendices/config.html
--
You received this message because you are subscribed to the Google Groups "Ansible Project" group.
To unsubscribe from this group and stop receiving emails from it, send an email to ansible-proje...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/79c9d49b-e09e-475b-8e10-b1ca37ab0541n%40googlegroups.com.
-- Jack Morgan
Nico Kadel-Garcia
Dec 29, 2021, 3:32:18 PM12/29/21
to ja...@jento.io, ansible...@googlegroups.com
On Wed, Dec 29, 2021 at 11:24 AM Jack Morgan <ja...@jento.io> wrote:
>
> "Set this to “False” if you want to avoid host key checking by the underlying tools Ansible uses to connect to the host" per the link below. Most commonly used for SSH connections.
>
> https://docs.ansible.com/ansible/latest/reference_appendices/config.html
Host key checking is a big problem in many environments where a
>
> "Set this to “False” if you want to avoid host key checking by the underlying tools Ansible uses to connect to the host" per the link below. Most commonly used for SSH connections.
>
> https://docs.ansible.com/ansible/latest/reference_appendices/config.html
disting OS image with distinct SSH keys may wind up assigned a
previously used IP address.
It can be turned for the Ansible server by editing ~/.ssh/config for
the account running ansible on that host, with:
Host *
UserKnownHostsFile /dev/null
StrictHostKeyChecking no
LogLevel ERROR
I've been suggesting this for complex environments since.... the
1990's, where the "hosts have stable DNS and stable individual keys"
has never been reliable. There have been demands in various
environments to publish or sign host keys, but the bootstrap to get
those keys under management needs a tool like ansible running *first*,
or it becomes a nasty bootstrap operation.
> On 12/29/21 08:10, davidy wrote:
>
> Hi Anyone can explain "false" below. Thank you
>
>
> sudo nano ansible.cfg
> [defaults]
> inventory = ./hosts
> host_key checking = false
> --
> You received this message because you are subscribed to the Google Groups "Ansible Project" group.
> To unsubscribe from this group and stop receiving emails from it, send an email to ansible-proje...@googlegroups.com.
> To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/79c9d49b-e09e-475b-8e10-b1ca37ab0541n%40googlegroups.com.
>
> --
> Jack Morgan
>
> --
> You received this message because you are subscribed to the Google Groups "Ansible Project" group.
> To unsubscribe from this group and stop receiving emails from it, send an email to ansible-proje...@googlegroups.com.
davidy
Jan 3, 2022, 4:57:40 PM1/3/22
to Ansible Project
Thank you!!
Reply all
Reply to author
Forward
0 new messages