Our Ansible files
inventory | ||
machines | ||
yaml_sub | ||
backup_docker_volumes.yaml | ||
convert_old_pre_ansible_machines.yaml | ||
hourly_update.yaml | ||
install_base_system.yaml | ||
install_desktop_packages.yaml | ||
install_docker.yaml | ||
install_docker_web.yaml | ||
install_ldap_389ds.yaml | ||
install_pi_hole.yaml | ||
install_semaphore.yaml | ||
LICENSE | ||
mount_points.yaml | ||
parameters_for_new_computer.yaml | ||
README.md |
neuro_ansible
Our Ansible files
How make a computer ready for ansible
dnf -y install ansible mc net-tools openssh-server openssh-clients passwdqc cracklib-dicts shadow-utils
systemctl enable sshd
systemctl start sshd
useradd -b /specialusers ansibleuser
passwd_value="PUT_A_PASSWORD_HERE"
echo ansibleuser:$passwd_value | chpasswd
echo "ansibleuser ALL=(ALL) NOPASSWD: ALL" > /etc/sudoers.d/ansible
Beware of SELinux
cat /etc/selinux/config | sed s/"$SELINUX=enforcing"/"SELINUX=disabled"/g > /etc/selinux/config_xxx
\cp /etc/selinux/config_xxx /etc/selinux/config
\rm /etc/selinux/config_xxx
reboot
How to make the server ready
Once:
dnf -y install ansible mc net-tools openssh-server openssh-clients passwdqc cracklib-dicts shadow-utils sshpass
ssh-keygen
And then for every computer:
ip="computername"
passwd_value="PUT_A_PASSWORD_HERE"
sshpass -p "$passwd_value" ssh-copy-id -o "StrictHostKeyChecking accept-new" ansibleuser@$ip
scp ~/.ssh/id* ansibleuser@$ip:~/.ssh