ansible:ansible_vault
Differences
This shows you the differences between two versions of the page.
| Both sides previous revision Previous revision Next revision | Previous revision | ||
|
ansible:ansible_vault [2023/03/20 23:53] manu |
ansible:ansible_vault [2023/09/19 19:27] (current) manu |
||
|---|---|---|---|
| Line 9: | Line 9: | ||
| * rekey: reencrypt | * rekey: reencrypt | ||
| + | Add option --vault-password-file <filename_not_encrypt> to prevent asking password | ||
| + | |||
| + | ansible vault | ||
| + | |||
| + | vaultID: multi-password | ||
| + | <code> | ||
| + | ansible-vault encrypt --vault-id pwd.txt group_vars/all/vault.txt | ||
| + | |||
| + | ansible-vault encrypt --vault-id @prompt group_vars/all/vault.txt | ||
| + | |||
| + | ansible -i "127.0.0.1," all --vault-id pwd.txt -m debug -a "msg='{{mysecret}}'" | ||
| + | |||
| + | Now add a specific ID (;id1) into the vaulting file | ||
| + | $ANSIBLE_VAULT;1.1;AES256;id1 | ||
| + | |||
| + | ansible -i "127.0.0.1," all --vault-id id1@pwd.txt -m debug -a "msg='{{mysecret}}'" | ||
| + | </code> | ||
| + | |||
| + | |||
| + | Variables used by ansible cfg | ||
| + | ansible_user | ||
| + | ansible_password | ||
ansible/ansible_vault.1679352829.txt.gz · Last modified: 2023/03/20 23:53 by manu
Page Tools
Except where otherwise noted, content on this wiki is licensed under the following license: GNU Free Documentation License 1.3
