Our Ansible files
Find a file
2024-04-12 17:39:19 +02:00
inventory Add files via upload 2024-03-29 01:52:25 +01:00
machines Delete machines/host_ansible 2024-04-12 17:39:19 +02:00
yaml_sub Add files via upload 2024-04-12 17:38:02 +02:00
backup_389ds.yaml Add files via upload 2024-04-12 17:38:02 +02:00
backup_docker_volumes.yaml Add files via upload 2024-04-04 13:53:58 +02:00
convert_old_pre_ansible_machines.yaml Add files via upload 2024-03-29 02:04:57 +01:00
hourly_update.yaml Add files via upload 2024-03-29 01:57:37 +01:00
install_desktop_packages.yaml Add files via upload 2024-04-12 17:38:02 +02:00
install_docker.yaml Add files via upload 2024-03-29 20:39:15 +01:00
install_docker_web.yaml Add files via upload 2024-03-29 20:39:15 +01:00
install_ldap_389ds.yaml Update install_ldap_389ds.yaml 2024-04-12 17:38:32 +02:00
install_pi_hole.yaml Add files via upload 2024-04-04 13:53:58 +02:00
install_semaphore.yaml Add files via upload 2024-04-04 13:53:58 +02:00
LICENSE Initial commit 2024-03-29 01:43:28 +01:00
mount_points.yaml Add files via upload 2024-03-29 01:59:09 +01:00
README.md Update README.md 2024-04-12 02:38:12 +02:00

neuro_ansible

Our Ansible files

How make a computer ready for ansible

dnf -y install ansible mc net-tools openssh-server openssh-clients passwdqc cracklib-dicts shadow-utils

systemctl enable sshd
systemctl start sshd

useradd -b /specialusers ansibleuser
passwd_value="PUT_A_PASSWORD_HERE"
echo ansibleuser:$passwd_value | chpasswd
echo "ansibleuser ALL=(ALL) NOPASSWD: ALL" > /etc/sudoers.d/ansible

Beware of SELinux

cat /etc/selinux/config | sed s/"$SELINUX=enforcing"/"SELINUX=disabled"/g > /etc/selinux/config_xxx
\cp /etc/selinux/config_xxx /etc/selinux/config
\rm /etc/selinux/config_xxx
reboot

How to make the server ready

Once:

dnf -y install ansible mc net-tools openssh-server openssh-clients passwdqc cracklib-dicts shadow-utils sshpass

ssh-keygen

And then for every computer:

ip="computername"
passwd_value="PUT_A_PASSWORD_HERE"
sshpass -p "$passwd_value" ssh-copy-id -o "StrictHostKeyChecking accept-new" ansibleuser@$ip
scp ~/.ssh/id* ansibleuser@$ip:~/.ssh