On 13.04.2019 19:47, Sergio Fernández wrote: > Hi, > > I am using Ansible along with HashiCorp's Vault to store sensible data. > I will be weekly sending a Secret_ID to each server, in order for them to > get a token. With this token, they can access the contents of the Vault. > The problem is that we must send a secret ID per host, and they can only be > generated in the server where Ansible is installed. > So here is my current Ansible Playbook file:
Do you mean that you need to create a uniq secret for each server with the command vault write -f auth/approle/role/my_role/secret-id -format=json | jq '.data.secret_id' ? Or create one secret that get sent to all the server? -- Kai Stian Olstad -- You received this message because you are subscribed to the Google Groups "Ansible Project" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/0e22a513-4a3d-d43a-0ed0-dba132da9be2%40olstad.com. For more options, visit https://groups.google.com/d/optout.
