Terraform and Ansible Automate First Boot

wes · May 2, 2025, 1:06pm

I am using Terraform and Ansible. With Azure VMs. I am just using ansible without AWX/Tower and hoping to not use those as it’s not a very big environment. For the ansible inventory we are using Azure dynamic inventory plugin for ansible.

What I want to do is have terraform provision the azure vms, then somehow copy our ansible vault password to the vm (securely), install ansible, clone our ansible repo, and have the server do an ansible-pull on the first boot so it gets it’s initial configuration automatically.

Does anyone have any recommendations on how to do this?

wayt · May 2, 2025, 4:35pm

Entitle the VM to get the relevant secret from Azure Key Vault and combine that with (assuming these are Linux VMs): Install Ansible - cloud-init 25.1.2 documentation

wes · May 2, 2025, 5:08pm

Thanks @wayt . Yes. Linux VMs. This is exactly what I was looking for.

wes · May 2, 2025, 7:19pm

Can you clarify a bit more about the process of “Entitle the VM to get the relevant secret from Azure Key Vault”. Are there any instructions online for that?

mcen1 · May 2, 2025, 9:58pm

You marked it as a solution without knowing what he was telling you to do…?

wayt · May 2, 2025, 10:32pm

Assign a managed identity to the VM and grant that identity/ VM access to the key vault.

Topic		Replies	Views
Seamless provisioning, install and configuration automation in Ansible Ansible Project kubernetes	3	5	April 18, 2017
AWX on Docker minikube / Ansible-Vault question Get Help awx , collections , vmware , howto	3	421	February 25, 2024
Ansible and Terraform use cases. Ansible Project aws , gcp , azure	1	13	March 31, 2020
Dynamically give Ansible a private key from an Infisical vault/Terraform Get Help howto , gitlab , ssh	6	117	February 28, 2025
Ansible and Azure Ansible Project azure	5	25	August 12, 2019

Terraform and Ansible Automate First Boot

Related topics