当我尝试在我的Ansible playbook中使用sudo运行任务时,我看到一条错误消息 .
这是我的剧本:
---
- hosts: production
gather_facts: no
remote_user: deployer
become: yes
become_method: sudo
become_user: root
tasks:
- name: Whoami
command: /usr/bin/whoami
我希望whoami是 root 但任务失败并显示错误消息:
» ansible-playbook -i ansible_hosts sudo.yml --ask-sudo-pass
SUDO password: [I paste my sudo password here]
PLAY [production] *************************************************************
GATHERING FACTS ***************************************************************
fatal: [MY.IP] => Missing become password
TASK: [Whoami] ****************************************************************
FATAL: no hosts matched or all hosts have already failed -- aborting
当我手动ssh到框中并尝试sudo它按预期工作:
» ssh deployer@production
» sudo whoami
[I paste the same sudo password]
root
部署者用户密码由Ansible设置如下(在不同的剧本中):
- hosts: production
remote_user: root
# The {{ansible_become_pass}} comes from this file:
vars_files:
- ./config.yml
tasks:
- name: Create deployer user
user: name=deployer uid=1040 groups=sudo,deployer shell=/bin/bash password={{ansible_become_pass}}
{{ansible_become_pass}} 是我希望使用以下python片段进行哈希处理的密码:
python -c 'import crypt; print crypt.crypt("password I desire", "$1$SomeSalt$")'
"password I desire" 替换为密码, "$1$SomeSalt$" 是随机盐 .
我正在使用Ansible 1.9.4版 .
有什么问题?
1 回答
我已经尝试了你的版本和playbook,只有
--ask-pass,它返回"stdout": "root"结果 .您必须将
--ask-sudo-pass替换为--ask-pass. 并确保您的部署用户具有root权限 .