- Timestamp:
- 8 Jan 2020, 13:01:29 (5 years ago)
- Location:
- main/waeup-ansible
- Files:
-
- 6 edited
Legend:
- Unmodified
- Added
- Removed
-
main/waeup-ansible/README-vhosts.rst
r15262 r15915 79 79 =========================== 80 80 81 In ``hosts`` add the new box in the ``[yet -untouched]`` section::81 In ``hosts`` add the new box in the ``[yet_untouched]`` section:: 82 82 83 [yet -untouched]83 [yet_untouched] 84 84 localhost:3333 ansible_user=ubuntu 85 85 … … 89 89 90 90 This should secure the new box. From now on, we can connect via the regular 91 ways. You can quit the open shell now and remove the ``[yet -untouched]`` entry91 ways. You can quit the open shell now and remove the ``[yet_untouched]`` entry 92 92 in ``hosts``. 93 93 … … 95 95 96 96 # hosts 97 [yet -untouched]97 [yet_untouched] 98 98 99 99 [bootstrapped] -
main/waeup-ansible/README.rst
r14693 r15915 46 46 as `root` on each targeted system. 47 47 48 3) For each server to handle, make an entry in the ``[yet -untouched]`` section48 3) For each server to handle, make an entry in the ``[yet_untouched]`` section 49 49 of the ``hosts`` file like this:: 50 50 51 51 # hosts 52 [yet -untouched]52 [yet_untouched] 53 53 h23.waeup.org ansible_user=root ansible_ssh_pass=so-secret ansible_sudo_pass="{{ ansible_ssh_pass }}" 54 54 h24.waeup.org ansible_user=root ansible_ssh_pass=123456789 ansible_sudo_pass="{{ ansible_ssh_pass }}" … … 104 104 to actually perform the changes. 105 105 106 6) In `hosts` move the host we handle from ``[yet -untouched]`` over to106 6) In `hosts` move the host we handle from ``[yet_untouched]`` over to 107 107 ``[bootstapped]``. 108 108 … … 252 252 file, normally ``hosts-virtual``, with a line like this: 253 253 254 [yet -untouched]254 [yet_untouched] 255 255 vh5.sample.org ansible_host=192.168.36.10 ansible_user=root 256 256 257 in the "yet -untouched" section.257 in the "yet_untouched" section. 258 258 259 259 Afterwards try: -
main/waeup-ansible/bootstrap.yml
r15389 r15915 9 9 # it! Do not run this playbook without having read the README. 10 10 # 11 - hosts: yet -untouched11 - hosts: yet_untouched 12 12 become: yes 13 13 vars: 14 14 # Enable root access via SSH? Set to false not before user 15 15 # accounts are active. 16 permit_ssh_root: true16 permit_ssh_root: false 17 17 # Allow admin users below to become root w/o entering password? 18 18 permit_become_root_no_password: true … … 20 20 # $ diceware -d '-' -n 6 --no-caps | tee mypw | mkpasswd -s --method=sha-512 >> mypw 21 21 admin_users: 22 ulif:23 hashed_pw: "$6$iuoXy2wO3elWM6d2$NR/ayKF58q0Bm0BdsR.g.Nt5xYzD0s0t17ZjrYaRpY7nkRekjgHTnqw849pK9FdynmNZAioW6oQBQx3BB5kcd0"22 uli: 23 hashed_pw: "$6$iuoXy2wO3elWM6d2$NR/ayKF58q0Bm0BdsR.g.Nt5xYzD0s0t17ZjrYaRpY7nkRekjgHTnqw849pK9FdynmNZAioW6oQBQx3BB5kcd0" 24 24 25 25 roles: -
main/waeup-ansible/hosts
r15914 r15915 1 [yet -untouched]1 [yet_untouched] 2 2 3 3 [vhosts] -
main/waeup-ansible/hosts-virtual
r13838 r15915 8 8 # vh5.sample.org ansible_host=192.168.36.10 ansible_ssh_private_key_file=.vagrant/machines/vh5/virtualbox/private_key ansible_user=vagrant 9 9 10 [yet -untouched]10 [yet_untouched] 11 11 # servers that are vagrant-wise provisioned, looking like fresh from hetzner 12 12 # -
main/waeup-ansible/vhost-bootstrap.yml
r14923 r15915 9 9 # it! Do not run this playbook without having read the README. 10 10 # 11 - hosts: yet -untouched11 - hosts: yet_untouched 12 12 become: yes 13 13 vars:
Note: See TracChangeset for help on using the changeset viewer.