Excluding servers from all

John_Harmon · October 26, 2017, 9:52pm

Just a though I had today. I would like to make sure nobody ever runs ansible against our production servers unless explicitly called by server name or group name. I want the servers/groups to be excluded from “all”. Is this, or something like it valid?

all!prodenv`

test1-apps
prod1-db

[nonprod]
test[01:20]-apps
test[01:5]-db

[prodenv]
prod[01:20]-apps
prod[01:5]-db
`

I am hoping for a quick way to prevent other uses (not using tower yet) from executing all and having it stop on any production servers on accident.

system · October 26, 2017, 10:18pm

Just put production in separate non default inventory. All host are always part of all, only way to avoid is host not existing.

j.r.hawkesworth · October 29, 2017, 8:13pm

Worth saying when you need to run against everything you can pass multiple inventory files to the ansible-playbook command.

Topic		Replies	Views
problem excluding group from task in playbook Ansible Project	5	1	November 28, 2013
opposite of --limit (to exclude hosts) Ansible Project	3	8	April 27, 2023
How do I remove host-group "all" Ansible Project	5	3	June 28, 2014
hosts syntax? Ansible Project	2	0	November 12, 2020
Inventory: IP's of all group members except self Ansible Project galaxy-ng	1	0	November 10, 2014

Excluding servers from all

Related topics