44 lines
1 KiB
Markdown
44 lines
1 KiB
Markdown
# neuro_ansible
|
|
Our Ansible files
|
|
|
|
# How make a computer ready for ansible
|
|
|
|
```
|
|
dnf -y install ansible mc net-tools openssh-server openssh-clients passwdqc cracklib-dicts shadow-utils
|
|
|
|
systemctl enable sshd
|
|
systemctl start sshd
|
|
|
|
useradd -b /specialusers ansibleuser
|
|
passwd_value="PUT_A_PASSWORD_HERE"
|
|
echo ansibleuser:$passwd_value | chpasswd
|
|
echo "ansibleuser ALL=(ALL) NOPASSWD: ALL" > /etc/sudoers.d/ansible
|
|
```
|
|
|
|
## Beware of SELinux
|
|
|
|
```
|
|
cat /etc/selinux/config | sed s/"$SELINUX=enforcing"/"SELINUX=disabled"/g > /etc/selinux/config_xxx
|
|
\cp /etc/selinux/config_xxx /etc/selinux/config
|
|
\rm /etc/selinux/config_xxx
|
|
reboot
|
|
```
|
|
|
|
# How to make the server ready
|
|
|
|
Once:
|
|
```
|
|
dnf -y install ansible mc net-tools openssh-server openssh-clients passwdqc cracklib-dicts shadow-utils sshpass
|
|
|
|
ssh-keygen
|
|
```
|
|
|
|
And then for every computer:
|
|
|
|
```
|
|
ip="computername"
|
|
passwd_value="PUT_A_PASSWORD_HERE"
|
|
sshpass -p "$passwd_value" ssh-copy-id -o "StrictHostKeyChecking accept-new" ansibleuser@$ip
|
|
scp ~/.ssh/id* ansibleuser@$ip:~/.ssh
|
|
```
|
|
|