How to do password management

Dave_B · December 9, 2016, 12:30pm

Hi

Struggling to get my head around this. According to the best practices, I’ve put the root password for all the vms in a vault encrypted file, and the variables are vault_ prefixed as suggested in http://docs.ansible.com/ansible/playbooks_best_practices.html#best-practices-for-variables-and-vaults . I don

My directory structure:
ls /etc/ansible/group_vars/

vars
vault

cat vars
ansible_become_user=vault_ansible_become_user
ansible_become_pass=vault_ansible_become_pass

And vault contains the secure data, and is ansible-vault encrypted.

How do I then pull that into a playbook/command line argument?

Brian_Coca · February 10, 2017, 3:41am

The group_vars/* adjacent to inventory or play are automatically read,
I would just set ansible_become_pass there.

Also note that these must be YAML formatted files, not KEY=VALUE pairs.

Topic		Replies	Views
How to handle passwords with the vault Ansible Project	1	2	December 12, 2016
Encrypted Password in Playbook Ansible Project	8	7	January 24, 2020
How to add password variables? Ansible Project	1	1	March 25, 2016
community.vmware.vmware_host_facts - vcenter username/pass Ansible Project vmware	2	0	March 14, 2023
Accessing encrypted variables fails Ansible Project	1	0	December 22, 2016