Secure Authentication

50 views
Skip to first unread message

Rishikesh Pawar

unread,
Aug 12, 2015, 3:38:27 PM8/12/15
to Ansible Project
Hi

In hosts file I have 10 servers, each having different password.
How can I make secure authentication to all hosts without specifying password in plain text?

Marcus Franke

unread,
Aug 12, 2015, 4:00:04 PM8/12/15
to Ansible Project

Hi,

what about some kind of a bootstrap playbook that will create a deployment user with sudo rights and a ssh key access.

This way you will have to provide the password exact one time per server.

/mf


--
You received this message because you are subscribed to the Google Groups "Ansible Project" group.
To unsubscribe from this group and stop receiving emails from it, send an email to ansible-proje...@googlegroups.com.
To post to this group, send email to ansible...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/4e17b824-b3fa-4d81-85f3-a528a864249c%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.

Joseph DJOMEDA

unread,
Aug 12, 2015, 6:22:33 PM8/12/15
to ansible...@googlegroups.com

Rishikesh Pawar ,

Based on what Marcus suggested here a way to start. Mine uses a pem file that you have some where. My approach is simple. I always create an ansible user to do the work on nodes. My user role creates the ansible user  on nodes and adds a sudoer file from template.

I hope this works for you or at least help you start with your own solution

Sent from mobile device... Please excuse the typos

To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/CAFRuYVdbqDqaioYsC0%3DMseYxQc%2B3VD-vZjV9qKsgPsbOHrnh1A%40mail.gmail.com.

main.yml
sudoer.j2
ansible_bootstraping.yml

Rishikesh Pawar

unread,
Aug 13, 2015, 1:25:36 AM8/13/15
to Ansible Project
Thanks Marcus franke
Reply all
Reply to author
Forward
0 new messages