I see this topic but it not answers to my querstion. Common scenarioo when all servers are on windows server is covered in article.
вторник, 30 января 2018 г., 12:43:46 UTC+3 пользователь Павел Полушин написал: > > Hello. > I have security-related question. > In our environment we use ansible for application deployment. Ansible > playbooks running by jenkins. > Scope for deployment contains Windows-based servers (2008R2+). > In some cases we are facing with "double-hop" problem when passing > credentials is needed. > CredSSP is intended to solve problems like this but it's insecure ( > http://www.powershellmagazine.com/2014/03/06/accidental-sabotage-beware-of-credssp/ > ). > In common cases, credentials are being sent in clear text. Here is picture > http://www.powershellmagazine.com/wp-content/uploads/2014/03/image001.png/ > > I'm interested, is this problem solved in requests-credssp module? > (Credentials are stored from jenkins. Ansible connects to servers using > https.) > Does anyone tried to investigate it? > > -- You received this message because you are subscribed to the Google Groups "Ansible Project" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/2803dfcf-2b07-427c-b677-dddb12f43039%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
