ansible:ansible_os_deployment
Differences
This shows you the differences between two versions of the page.
| Both sides previous revision Previous revision | |||
|
ansible:ansible_os_deployment [2025/05/26 11:09] manu [Conditional role] |
ansible:ansible_os_deployment [2025/06/02 17:51] (current) manu [Create filesystems] |
||
|---|---|---|---|
| Line 258: | Line 258: | ||
| You could replace size parsing with something like: | You could replace size parsing with something like: | ||
| lsfs /data | awk 'NR>1 {printf "%.0fG\n", $3*512/1024/1024/1024}' | lsfs /data | awk 'NR>1 {printf "%.0fG\n", $3*512/1024/1024/1024}' | ||
| + | |||
| + | |||
| + | ===== Playbook2 ===== | ||
| + | |||
| + | <cli prompt='$'> | ||
| + | [ansible@lnx001 playbooks]$ cat main.yml | ||
| + | --- | ||
| + | - name: Master playbook | ||
| + | hosts: all | ||
| + | gather_facts: true | ||
| + | become: yes | ||
| + | roles: | ||
| + | - role: aix_system_config | ||
| + | when: | ||
| + | - ansible_system == "AIX" | ||
| + | - role: lnx_system_config | ||
| + | when: | ||
| + | - ansible_system == "Linux" | ||
| + | |||
| + | [ansible@lnx001 playbooks]$ cat roles/lnx_system_config/tasks/main.yml | ||
| + | --- | ||
| + | - name: Include SSH configuration tasks | ||
| + | include_tasks: ssh_config.yml | ||
| + | |||
| + | [ansible@lnx001 playbooks]$ cat roles/lnx_system_config/vars/main.yml | ||
| + | --- | ||
| + | _etc_ssh_sshd_config: /etc/ssh/sshd_config | ||
| + | |||
| + | [ansible@lnx001 playbooks]$ cat roles/lnx_system_config/files/sshd_config.json | ||
| + | [ | ||
| + | { | ||
| + | "name": "Port", | ||
| + | "line": "Port 22", | ||
| + | "action": "replace" | ||
| + | }, | ||
| + | { | ||
| + | "name": "ListenAddress", | ||
| + | "line": "ListenAddress 0.0.0.0", | ||
| + | "action": "replace" | ||
| + | }, | ||
| + | { | ||
| + | "name": "ListenAddress", | ||
| + | "line": "ListenAddress ::", | ||
| + | "action": "remove" | ||
| + | }, | ||
| + | { | ||
| + | "name": "UseDNS", | ||
| + | "line": "UseDNS no", | ||
| + | "action": "replace" | ||
| + | }, | ||
| + | { | ||
| + | "name": "SyslogFacility", | ||
| + | "line": "SyslogFacility AUTH", | ||
| + | "action": "replace" | ||
| + | }, | ||
| + | { | ||
| + | "name": "LogLevel", | ||
| + | "line": "LogLevel INFO", | ||
| + | "action": "replace" | ||
| + | }, | ||
| + | { | ||
| + | "name": "PermitRootLogin", | ||
| + | "line": "PermitRootLogin yes", | ||
| + | "action": "replace" | ||
| + | }, | ||
| + | { | ||
| + | "name": "PasswordAuthentication", | ||
| + | "line": "PasswordAuthentication yes", | ||
| + | "action": "replace" | ||
| + | }, | ||
| + | { | ||
| + | "name": "UsePAM", | ||
| + | "line": "UsePAM yes", | ||
| + | "action": "replace" | ||
| + | }, | ||
| + | { | ||
| + | "name": "PidFile", | ||
| + | "line": "PidFile /var/run/sshd.pid", | ||
| + | "action": "replace" | ||
| + | }, | ||
| + | { | ||
| + | "name": "Subsystem", | ||
| + | "line": "Subsystem sftp /usr/libexec/openssh/sftp-server -f AUTH -l INFO", | ||
| + | "action": "replace" | ||
| + | }, | ||
| + | { | ||
| + | "name": "KexAlgorithms", | ||
| + | "line": "KexAlgorithms -*sha1*", | ||
| + | "action": "insertafter", | ||
| + | "after": "GSSAPIEnablek5users" | ||
| + | }, | ||
| + | { | ||
| + | "name": "MACs", | ||
| + | "line": "MACs -*umac-64*,*sha1*,umac-128-etm@openssh.com", | ||
| + | "action": "insertafter", | ||
| + | "after": "GSSAPIEnablek5users" | ||
| + | } | ||
| + | ] | ||
| + | |||
| + | </cli> | ||
ansible/ansible_os_deployment.txt ยท Last modified: 2025/06/02 17:51 by manu
Page Tools
Except where otherwise noted, content on this wiki is licensed under the following license: GNU Free Documentation License 1.3
