For my credssp (windows) to work, I need ansible_user and ansible_password
set. I can set these in plain text in a variable, and everything works
fine; however, when experimenting with vars_prompt I attempt the same thing
and fails when I use encryption. If I store the password as I do the ad
username (clear text), it also works. This may not even be a vars_prompt
issue, but an encryption one. Wondering if this is a bug or if I am doing
something wrong?
Playbook
---
# Testing Windows AD Stuff
- hosts: myworkstation
gather_facts: false
vars_prompt:
- name: ansible_user
prompt: "ad username?"
private: no
- name: ansible_password
prompt: "ad password?"
private: yes
encrypt: "sha512_crypt"
tasks:
- debug:
var: ansible_user
- debug:
var: ansible_password
- name: Jeremy Test
win_shell: C:\Scripts\ADtest.ps1
register: test
- debug:
var: test
~
Result when encrypted:
# ansible-playbook ./test.yml -i /etc/ansible/inventory/windows
ad username?: myuser
ad password?:
PLAY [myworkstation]
*****************************************************************************************************************************************************************************************************************************
TASK [debug]
*****************************************************************************************************************************************************************************************************************************
ok: [myworkstation] => {
"ansible_user": "myuser"
}
TASK [debug]
*****************************************************************************************************************************************************************************************************************************
ok: [myworkstation] => {
"ansible_password":
"$6$n3CVi/bAXRADodxN$SKTPxVVzkiY4hmYWKMh5un1f1vAbaWc8KrDenWCLlrny8BDT.AkkI4rmfCn1unC9iugrSd6KFJFXdWRZ91AJm1"
}
TASK [Jeremy Test]
***********************************************************************************************************************************************************************************************************************
fatal: [myworkstation]: UNREACHABLE! => {"changed": false, "msg": "credssp:
Server did not response with a CredSSP token after step Step 3. Server
Authentication - actual 'Negotiate, Kerberos, CredSSP'", "unreachable": true
}
--
You received this message because you are subscribed to the Google Groups
"Ansible Project" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
To post to this group, send email to [email protected].
To view this discussion on the web visit
https://groups.google.com/d/msgid/ansible-project/c8f10090-a6a2-4cd8-be10-098fdf9b86d1%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
