Fri, 16 Aug 2019 19:16:06 -0400
no unattended-upgrades by default
73 | 1 | --- |
76 | 2 | - name: "Ansible control user" |
73 | 3 | user: |
4 | name: ansible | |
5 | comment: "Ansible Controller" | |
6 | home: /var/lib/ansible | |
7 | createhome: true | |
8 | append: true | |
9 | system: true | |
10 | state: present | |
11 | ||
76 | 12 | - name: "Ansible pubkeys" |
73 | 13 | authorized_key: |
14 | manage_dir: true | |
15 | user: ansible | |
88
3dbfd253c775
separate disable_stock_users role
Meredith Howard <mhoward@roomag.org>
parents:
76
diff
changeset
|
16 | key: "{{ item }}" |
73 | 17 | with_file: |
18 | - 'public_keys/ansible' | |
19 | ||
76 | 20 | - name: "Ansible sudo" |
73 | 21 | lineinfile: |
22 | dest: /etc/sudoers | |
23 | state: present | |
24 | regexp: '^ansible' | |
25 | line: 'ansible ALL=(ALL) NOPASSWD: ALL' | |
26 | validate: 'visudo -cf "%s"' |