Changeset 14773 for main/waeup-ansible


Ignore:
Timestamp:
4 Aug 2017, 22:54:59 (7 years ago)
Author:
uli
Message:

Tell about ansible-vault in README.

Just encrypted all sensitive ansible files on my
laptop and could ping all hosts nevertheless.

Tell, how I did it.

File:
1 edited

Legend:

Unmodified
Added
Removed
  • main/waeup-ansible/host_vars/README.txt

    r14752 r14773  
    88
    99    # file "h1.example.org"
     10    ---
    1011    ansible_sudo_pass: my-secret-sudo-password
    1112    ansible_user: foo
     
    1617    <edit-file, add content as above>
    1718
    18 and later, when running ansible you can add ``--ask-vault`` option to decrypt
     19or, if the file exists already, yet unencrypted::
     20
     21    $ ansible-vault encrypt h1.example.com
     22
     23and later, when running ansible you can add ``--ask-vault-pass`` option to decrypt
    1924the config files. In that case make sure to use the same password for all vault
    20 files.
     25files (or encrypt all files at once with the same password).
    2126
    2227This very file serves as a placeholder in case this whole repo is going to
Note: See TracChangeset for help on using the changeset viewer.