LDAP user is a user in the active directory. "and ansible is then attempting to use your kerberos credentials to talk to your windows machines." - but we configured the "ansible_ssh_user| to a specific user and it is not using that user but the user logged in to the control machine...why is that?
The control machine is: Linux version 2.6.32-504.16.2.el6.x86_64 ([email protected]) (gcc version 4.4.7 20120313 (Red Hat 4.4.7-11) (GCC) ) On Wednesday, August 19, 2015 at 12:56:53 PM UTC+3, J Hawkesworth wrote: > > Not hit this- I'm not sure what you mean by 'LDAP (windows) users' but if > you are logging in to your ansible controller using a windows domain user, > and password then chances are you are using kerberos and ansible is then > attempting to use your kerberos credentials to talk to your windows > machines. > > You don't mention which OS you are running your ansible controller on but > if you have krb5-workstation (yum package) or apt-get equivalent installed, > you can run the command > > klist > > which will show any kerberos credentials you have. I suspect ansible is > using these. > > If I'm right then I think your options are > > a/ use a local user on your windows machines (change > ansible_ssh_user=some_local_user not a user@domain) > > b/ log in to your ansible controller as a domain user with suitable > privileges for whatever it is you need to do on your windows machines and > change your > ansible_ssh_user=domain_user_you_logged_in_to_ansible_as@DOMAIN ) > > Hope the above helps > > Jon > > On Wednesday, August 19, 2015 at 9:19:46 AM UTC+1, Amir Luzon wrote: >> >> hi guys, >> >> our control machine is configured so that we can login to the machine >> with our LDAP (windows) users. from there we run ansible playbooks. >> >> here are some of the configurations we use: >> >> [windows:vars] >> ansible_ssh_user=[DeployUser]@[OurDomain] >> ansible_ssh_pass=password >> ansible_connection=winrm >> >> the [DeployUser] is not the same as the LDAP user to login to the ansible >> control machine. >> >> yet when running powershell modules on a windows machine we noticed that >> Ansible will use the LDAP user used to login to control machine and not the >> user configured in the hosts file on ansible_ssh_user. >> >> from what i understand ansible should use the ansible_ssh_user on windows >> machine to do whatever but for us it uses the LDAP user??? >> >> anyone encounter this issue? please help! >> >> >> thanks in advance >> > -- You received this message because you are subscribed to the Google Groups "Ansible Project" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/0cd7eec8-7184-455f-b694-0da76e76a613%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
