How to setup variable files to contain multiple versions of vaulted variables

dan_linder · August 20, 2018, 8:49pm

I’m running Ansible 2.6.2 and trying to wrap my head around the –vault-id and multiple vault passwords.

As I understand it, the usefulness it is bringing is that different users can have their playbook decrypt their teams version of the variable and we don’t have to create different vaulted files for each environment. I’m having trouble determining how to setup the variable file properly.

To test this, I setup a simple test like this:

Setup a simple playbook to pull in the variable file then show the encrypted data:

The “validate_dev.yml” playbook:

Topic		Replies	Views
Dynamically include vaulted vars within playbook only for certain hosts Ansible Project	1	0	February 28, 2017
Is it possible to set the vault password once already in the playbook? Ansible Project	1	0	August 8, 2017
Vaulted variables missing, password accepted Ansible Project	0	0	November 22, 2017
Vault Ids and Multiple Vault Passwords Ansible Project	1	0	July 29, 2018
Encrypted Password in Playbook Ansible Project	8	7	January 24, 2020

How to setup variable files to contain multiple versions of vaulted variables

Setup a simple playbook to pull in the variable file then show the encrypted data:

The “validate_dev.yml” playbook:

Related topics