chnaging all passwords on linux box

Andrew_Morgan · August 30, 2019, 6:19am

Hello All,

I have a task to change all the password on a vpnbox and then give the user their password. I have been researching and think I found a way to do it, but I am not sure how I then get the password to output to a file to then give the user. Is there a way I can go about doing that? After assigning a password, out the password that was assigned and the user’s name to a file.

Thank you

Dick_Visser · August 30, 2019, 6:32am

It depends on what your vpn box looks like and how easy it is to change passwords on it.

You can loop over the users changing their password to a random value and then writing those to files named after the user name.
This is just one way of doing it- there are probably more.

But whatever you come up with, as an affected user I wouldn’t be very happy if someone else sets a password for me and then copies that around in plain text files.
You can try to secure this but ultimately it’s best to offer a secure way for users to do this themselves. Or have the vpn box authenticate users to some existing directory (both of which might not be possible, depending on your situation).

Dick

Andrew_Morgan · August 30, 2019, 4:59pm

Thank you for your answer. The vpn box is a simple openvpn server, so changing the linux users password is simple. I think I am having issues with how to export those values(username and associated) password to a file. Is there an example of this you can point me toward? I am not seeing any online.

Thank you

Cade_Lambert · August 30, 2019, 5:27pm

I think you should run through how you want it to work. Do you want it to output a file to a server? A workstation? Shared storage? Are you emailing the file to the user?

If your intent is to email that file to a user, you could just use the email module and include the password variable in the body of the email.

racke · August 31, 2019, 7:30am

Thank you for your answer. The vpn box is a simple openvpn server, so changing the linux users password is simple. I
think I am having issues with how to export those values(username and associated) password to a file. Is there an
example of this you can point me toward? I am not seeing any online.

Thank you

Hello Andrew,

I would do it the other way around - set up a YAML file with the usernames and passwords on the Ansible controller
and change the passwords based on that. The YAML file should be encrypted with Ansible vault for security.

Regards
Racke

Andrew_Morgan · August 31, 2019, 7:27pm

Thank you , that is a very good suggestion.I will do it that way and report back if I need help.

Regards,
Andrew

Topic		Replies	Views
user module update_password changing password to and unknown value Ansible Project	1	3	April 26, 2016
Using ansible changing password for root account -- password error after changing Ansible Project	2	4	November 23, 2017
Change password using script Ansible Project windows	4	16	January 29, 2019
Password change for 350+ linux host using ansible but have to do without ssh copying Ansible Project	1	0	November 23, 2017
Changing different passwords for servers in Ansible Get Help	1	387	March 4, 2024

chnaging all passwords on linux box

Related topics