Ansible become root and run other commands

Alessandro_Giannini · February 26, 2025, 4:01pm

Hi guys, I have a problem with running commands on the remote host with the root account. The manual procedure involves logging in to the server with the user ‘user1’ after which I have to run the command ‘sudo su -’ (without password and without other parameters) to become ‘root’ and execute other commands (e.g. chown userx:userx /path/file). Is there any ‘good soul’ who can share a playbook to achieve this result? Thank you for your support

kristianheljas · February 26, 2025, 4:07pm

“Become” is the magic keyword here, here are the docs:
https://docs.ansible.com/ansible/latest/playbook_guide/playbooks_privilege_escalation.html

Within playbooks, you can set become: true on play or task level and such tasks will run with sudo by default.

For example, there’s file module that allows to modify file permissions.

- hosts: targethost
  become: true
  tasks:
    - name: Change file ownership, group and permissions
      ansible.builtin.file:
        path: /etc/foo.conf
        owner: foo
        group: foo
        mode: '0644'

If theres no suitable module for your needs, you can use command or shell module to execute arbitrary commands on the target.

Kevinwincott · February 26, 2025, 5:56pm

couldnt have answered it better myself. you can specify a become user too if you need to

Topic		Replies	Views
Sudo su - Ansible Developer	2	3	March 3, 2020
ansible playbook to run cmd using its root user (sudo rootsh) and password Ansible Project	12	140	January 24, 2023
Does Ansible have to run as root? sudo and --become-user Ansible Project	4	30	September 13, 2016
Ansible Privilege Escalation Ansible Project	3	0	July 20, 2015
Ansible unable to run command by becoming other user and using sudo Ansible Project	4	10	May 14, 2020

Ansible become root and run other commands

Related topics