On 12 September 2018 at 14:45, Madushan Chathuranga <[email protected]> wrote: > > Hi, > > This is to connect to the remote host. I'm aware that we can do something > similar to this, > ansible-playbook -i hosts.yml --private-key=private_key_path > ansible_script.yml > > also, I know we can use the private key in the inventory host_vars as > ansible_ssh_private_key > but why ansible doesn't provide a option to manage private_key's password if > it allows to use a private_key.
I'm speculating here, but I think it's because providing passwords directly to ansible on the command line is more insecure than necessary. All password/authentication invocations (private keys, vault passwords, password prompts) seem to be done either through a prompt, or by pointing to a file containing the password. So instead of supplying a password on the command line to use an encrypted private key, you are encouraged to use a non-encrypted private key. Again, this is my guess... Dick -- You received this message because you are subscribed to the Google Groups "Ansible Project" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/CAL8fbwMoTk5H0k4vxcv0_R5VMYC7vBfWCR05iwW4KvpXOQp2ag%40mail.gmail.com. For more options, visit https://groups.google.com/d/optout.
