Commit a89b3297 authored by viscapi's avatar viscapi
Browse files

Marked ansible_become_passoword variable as optional

parent 918e9e58
......@@ -49,7 +49,7 @@ ansible
| |
| |_ all
| |
| |_ var_pass.yml
| |_ var_pass.yml (optional)
|
|_ host_vars
| |
......@@ -62,7 +62,7 @@ ansible
|_ postgresql
```
**N.B:** privilege escalation (sudo) relies on the "ansible_become_password" variable in group_vars/all/var_pass.yml file (it should be vaulted):
**OPTIONAL:** privilege escalation (sudo) sometimes relies on the "ansible_become_password" variable in group_vars/all/var_pass.yml file (it should be vaulted):
```bash
cd ansible/group_vars/all/
......@@ -72,7 +72,7 @@ ansible-vault create var_pass.yml
```
---
ansible_become_password: your password to become root on the target machines
ansible_become_password: your password to sudo privileges on the target machines
...
```
......@@ -197,7 +197,7 @@ ssh-copy-id -i /home/user/.ssh/ansible_id_rsa.pub user@myhost2.mydomain.tld
```bash
cd ansible
ansible-playbook --key-file=/path/to/your/.ssh/ansible_id_rsa -i irods_hosts irods.yml --ask-vault-pass --vault-id irods@prompt
ansible-playbook --key-file=/path/to/your/.ssh/ansible_id_rsa -i irods_hosts irods.yml ((--ask-vault-pass)) --vault-id irods@prompt
```
The ansible-playbook command will then ask you to input two passwords in order to decrypt your vaulted variables.
The ansible-playbook command will then ask you to input either one or two passwords in order to decrypt your vaulted variables.
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment