random length password

Kathy_L · April 18, 2023, 2:39pm

Currently we are using pwgen to generate our random length passwords, but we would like to use an Ansible module to make things easier. What I have is not working -

set_fact:
user_password: “{{ lookup(‘ansible.builtin.password’, chars=[‘ascii_letters’, ‘digits’], length = {{ range(8-12)|random }} ) }}”

Of course it does not like a variable within a variable. Is there another way to do this with an Ansible module that I am missing?

Akasurde · April 18, 2023, 4:29pm

Have you tried -

name: Generate random string with length 12
ansible.builtin.debug:
var: lookup(‘community.general.random_string’, length=12)

Example result: [‘Uan0hUiX5kVG’]

Kathy_L · April 18, 2023, 4:54pm

I looked at that, but we want to vary the length of the password each time this is run.

sivel · April 18, 2023, 5:00pm

I believe this is roughly what you want:

{{ lookup(‘ansible.builtin.password’, ‘/dev/null’, chars=[‘ascii_letters’, ‘digits’], length=range(8, 12)|random) }}

You cannot nest {{ }}
Instead of range(8-12) I think you want range(8, 13). First you want a comma, and then range is non-inclusive of the last number, so you have to add 1.
The password lookup requires a file to write to, even if that is just /dev/null (a normal file is how it has historically achieved idempotency.

Topic		Replies	Views
new password generating lookup plugin -- neat! Ansible Project	0	0	March 11, 2013
Generating string based on inventory variable Get Help playbook	6	263	December 4, 2023
Issue with generating passwords as part of a host_vars file Ansible Project	3	0	September 25, 2013
Setting user password via ansible module user didn't work as expected Ansible Project	2	0	July 12, 2016
Unable to generate a random password for a user account in Ansible playbook Ansible Project ansible-project	0	0	September 27, 2017

random length password

Example result: [‘Uan0hUiX5kVG’]

Related topics