Ansible KIT: Unterschied zwischen den Versionen
Zur Navigation springen
Zur Suche springen
(Die Seite wurde neu angelegt: „=Installation= *sudo apt install ansible sshpass =Verzeichnis erstellen= *mkdir -p ~/ansible =Host Datei erstellen= mkdir -p ~/ansible <pre> *echo " [firewall…“) |
|||
| Zeile 25: | Zeile 25: | ||
ansible_ssh_common_args='-o StrictHostKeyChecking=no' | ansible_ssh_common_args='-o StrictHostKeyChecking=no' | ||
" > ~/ansible/hosts | " > ~/ansible/hosts | ||
| + | </pre> | ||
| + | =Wir pingen= | ||
| + | *ansible all -i ~/ansible/hosts -m ping | ||
| + | =Playbooks= | ||
| + | *vi ~/ansible/install_ca.yml | ||
| + | </pre> | ||
| + | - hosts: firewalls | ||
| + | gather_facts: yes | ||
| + | tasks: | ||
| + | - name: Kopiere CA-Zertifikat auf die Firewalls | ||
| + | copy: | ||
| + | src: ca.crt | ||
| + | dest: /usr/local/share/ca-certificates/ca.crt | ||
| + | owner: root | ||
| + | group: root | ||
| + | mode: "0644" | ||
| + | |||
| + | - name: Zertifikatsdatenbank aktualisieren | ||
| + | command: sudo update-ca-certificates | ||
</pre> | </pre> | ||
Version vom 19. März 2025, 16:56 Uhr
Installation
- sudo apt install ansible sshpass
Verzeichnis erstellen
- mkdir -p ~/ansible
Host Datei erstellen
mkdir -p ~/ansible
*echo " [firewalls] fw1 ansible_host=192.168.3.101 fw2 ansible_host=192.168.3.102 fw3 ansible_host=192.168.3.103 fw4 ansible_host=192.168.3.104 fw5 ansible_host=192.168.3.105 fw6 ansible_host=192.168.3.106 fw7 ansible_host=192.168.3.113 [firewalls:vars] ansible_user=kit ansible_password=kit ansible_become=true ansible_become_method=sudo ansible_become_password=kit ansible_ssh_common_args='-o StrictHostKeyChecking=no' " > ~/ansible/hosts
Wir pingen
- ansible all -i ~/ansible/hosts -m ping
Playbooks
- vi ~/ansible/install_ca.yml
- hosts: firewalls
gather_facts: yes
tasks:
- name: Kopiere CA-Zertifikat auf die Firewalls
copy:
src: ca.crt
dest: /usr/local/share/ca-certificates/ca.crt
owner: root
group: root
mode: "0644"
- name: Zertifikatsdatenbank aktualisieren
command: sudo update-ca-certificates