Security acess to a machine via Ansible

Oscar_Pinto · February 22, 2018, 12:12pm

How can I ensure that a user that is used to play the playbooks does not have ssh access in any other way

Kai_Stian_Olstad · February 23, 2018, 2:30pm

I don't understand what you mean, since you have no answers other might have the same problem.
Could you please rephrase.

Varun_Chopra · February 24, 2018, 4:14pm

You can use Ansible Vault or go with Tower. It has support for teams.

Oscar_Pinto · February 27, 2018, 9:45am

Hi There,

The question is i have a user that i intend do restrict ssh to the client machine, but i use it to the ansible playbooks.

Best Regards

sábado, 24 de Fevereiro de 2018 às 16:14:32 UTC, Varun Chopra escreveu:

system · February 27, 2018, 2:41pm

The easiest way is to only allow that user logging in with a specific
ssh key, then secure the private key and dole out access indirectly as
needed.

You could do this via sudo/acls/etc or you can use something like
AWX/Tower, which is designed for it.

Topic		Replies	Views
Ansible: multiple users to run playbook without sudo access to target machines Ansible Project	2	0	May 3, 2018
Ansible Tower - user awx permission Ansible Project awx , ansible-project	0	0	June 10, 2020
continual deployment with ansible... and managing SSH keys? Ansible Project	6	0	September 23, 2014
Missing sudo password Ansible Project	3	1	October 22, 2014
How to control access with sudo and FreeIPA Ansible Project	3	1	February 10, 2017