can i get some help w this? My account to join the domain keeps getting
locked out.
This password has spaces in it
like this
"This is my pa$$w0rd!"
but account keeps getting locked out
On Tue, Jun 9, 2020 at 8:31 AM Tony Wong <tdubb...@gmail.com> wrote:
> ok I was able to use the customization_spec to join the machine to the
> domain
>
> But how do I assign the statistic IP to the server?
>
> my host file looks like this before using the customization_spec
>
>
> [prod-k8s-workers]
> prod-k8s-worker01 deploy_vsphere_datastore='RW-VA-NIM-VOL9'
> guest_custom_ip='10.200.1.41' guest_notes='Worker #01'
> prod-k8s-worker02 deploy_vsphere_datastore='RW-VA-NIM-VOL9'
> guest_custom_ip='10.200.1.43' guest_notes='Worker #02'
> #prod-k8s-worker03 deploy_vsphere_datastore='RW-VA-NIM-VOL9'
> guest_custom_ip='10.200.1.44' guest_notes='Worker #03'
> #prod-k8s-worker04 deploy_vsphere_datastore='RW-VA-NIM-VOL9'
> guest_custom_ip='10.200.1.45' guest_notes='Worker #04'
> #prod-k8s-worker05 deploy_vsphere_datastore='RW-VA-NIM-VOL9'
> guest_custom_ip='10.200.1.46' guest_notes='Worker #05'
>
>
> and in my roles file
>
> networks:
> - name: '{{ guest_network }}'
> ip: '{{ guest_custom_ip }}'
> netmask: '{{ guest_netmask }}'
> gateway: '{{ guest_gateway }}'
> customization:
> dns_servers:
> - '{{ guest_dns_server }}'
> domain : '{{ guest_domain_name }}'
> hostname: '{{ inventory_hostname }}
>
>
> I guess I cannot use the values in my roles file when using
> customization_spec?
>
> On Tue, Jun 9, 2020 at 7:16 AM Tony Wong <tdubb...@gmail.com> wrote:
>
>> hi
>>
>> for
>>
>> customization:
>> domainadmin: '{{ lookup("env", "ANSIBLE_NET_USERNAME") }}'
>> domainadminpassword:
>> '{{ lookup("env", "ANSIBLE_NET_PASSWORD") }}'
>> joindomain: domain.fqdn
>>
>>
>> what does this mean?
>>
>> lookup("env", "ANSIBLE_NET_USERNAME"
>>
>>
>> are you manually putting the username and password in the answer file?
>>
>> Can this be encrypted
>>
>>
>> On Mon, Jun 8, 2020 at 10:13 AM Dave York <davey...@gmail.com> wrote:
>>
>>> I'm not using a customization template, but it may be possible - I think
>>> that's what David Foley was referencing.
>>>
>>> Check out customization_spec within the vmware_guest module
>>> https://docs.ansible.com/ansible/latest/modules/vmware_guest_module.html
>>>
>>> You can use the method im using OR you can call customization_spec
>>>
>>> On Monday, June 8, 2020 at 10:06:57 AM UTC-7, Tony Wong wrote:
>>>>
>>>> Thank you. So for the customization part, i didnt see a mention of the
>>>> name of the customization template in vcenter.
>>>>
>>>> so ansible does not use that ?
>>>>
>>>> On Mon, Jun 8, 2020 at 9:46 AM Dave York <dave...@gmail.com> wrote:
>>>>
>>>>> These are the two plays I use to do what you were asking about:
>>>>>
>>>>> - name: Ensure Computer Object exists in AD
>>>>> win_domain_computer:
>>>>> name: '{{ inventory_hostname_short }}'
>>>>> dns_hostname: '{{ inventory_hostname }}'
>>>>> domain_server: domaincontroller.fqdn
>>>>> sam_account_name: '{{ inventory_hostname_short }}$'
>>>>> ou: '{{ AD_OU }}'
>>>>> description: '{{ owner_email }}'
>>>>> enabled: yes
>>>>> state: present
>>>>> delegate_to: utilityserver.fqdn
>>>>>
>>>>> - name: Clone to VM from Template
>>>>> vmware_guest:
>>>>> hostname: '{{ vsphere_hostname }}'
>>>>> username: '{{ lookup("env", "VMWARE_USER") }}'
>>>>> password: '{{ lookup("env", "VMWARE_PASSWORD") }}'
>>>>> validate_certs: no
>>>>> folder: '{{ vmware_folder }}'
>>>>> annotation: "{{ owner_email }}"
>>>>> datacenter: '{{ vmware_datacenter }}'
>>>>> name: '{{ inventory_hostname_short }}'
>>>>> cluster: '{{ vmware_cluster }}'
>>>>> state: poweredon
>>>>> template: '{{ vmware_template }}'
>>>>> datastore: '{{ vmware_datastore }}'
>>>>> customization:
>>>>> domainadmin: '{{ lookup("env", "ANSIBLE_NET_USERNAME") }}'
>>>>> domainadminpassword:
>>>>> '{{ lookup("env", "ANSIBLE_NET_PASSWORD") }}'
>>>>> joindomain: domain.fqdn
>>>>> password: '{{ templatepwd }}'
>>>>> timezone: 004
>>>>> disk:
>>>>> - size_gb: 100
>>>>> type: thin
>>>>> - size_gb: 100
>>>>> type: thin
>>>>> hardware:
>>>>> memory_mb: '{{ vmware_mem }}'
>>>>> num_cpus: '{{ vmware_cpu }}'
>>>>> scsi: paravirtual
>>>>> hotadd_cpu: True
>>>>> hotremove_cpu: True
>>>>> hotadd_memory: True
>>>>> boot_firmware: "efi"
>>>>> networks:
>>>>> - name: '{{ vmware_network }}'
>>>>> ip: '{{ ipv4 }}'
>>>>> netmask: '255.255.255.0'
>>>>> gateway: '{{ ipv4_gateway }}'
>>>>> device_type: vmxnet3
>>>>> dns_servers:
>>>>> - '{{ dns_primary }}'
>>>>> - '{{ dns_secondary }}'
>>>>> wait_for_ip_address: yes
>>>>> wait_for_customization: yes
>>>>> delegate_to: localhost
>>>>> register: deploy
>>>>>
>>>>>
>>>>> On Monday, June 8, 2020 at 7:15:11 AM UTC-7, Tony Wong wrote:
>>>>>>
>>>>>> for ansible, is there a reverse order to detroy the vms after the vm
>>>>>> playbook has been run like terraform? Or do I need to create another
>>>>>> playbook to destroy the vms?
>>>>>>
>>>>>> On Mon, Jun 8, 2020 at 6:59 AM Tony Wong <tdub...@gmail.com> wrote:
>>>>>>
>>>>>>> I got a customization template in vcenter. how do I specify using
>>>>>>> that template. Also the template looks like will override my static IP
>>>>>>> settings on my Vms.
>>>>>>>
>>>>>>> On Sun, Jun 7, 2020 at 3:31 PM Dave York <dave...@gmail.com> wrote:
>>>>>>>
>>>>>>>> Ive done this by using the customization argument of the
>>>>>>>> vmware_guest module to join the domain. but prior to vmware_guest i
>>>>>>>> use a
>>>>>>>> win_domain_computer delegated to a windows utility box to prestage the
>>>>>>>> computer object in the right ou
>>>>>>>>
>>>>>>>> Sent from Outlook Mobile <https://aka.ms/blhgte>
>>>>>>>>
>>>>>>>> --
>>>>>>>> You received this message because you are subscribed to the Google
>>>>>>>> Groups "Ansible Project" group.
>>>>>>>> To unsubscribe from this group and stop receiving emails from it,
>>>>>>>> send an email to ansible...@googlegroups.com.
>>>>>>>> To view this discussion on the web visit
>>>>>>>> https://groups.google.com/d/msgid/ansible-project/BY5PR11MB389625F705684B8C33E6891EA1840%40BY5PR11MB3896.namprd11.prod.outlook.com
>>>>>>>> <https://groups.google.com/d/msgid/ansible-project/BY5PR11MB389625F705684B8C33E6891EA1840%40BY5PR11MB3896.namprd11.prod.outlook.com?utm_medium=email&utm_source=footer>
>>>>>>>> .
>>>>>>>>
>>>>>>> --
>>>>> You received this message because you are subscribed to the Google
>>>>> Groups "Ansible Project" group.
>>>>> To unsubscribe from this group and stop receiving emails from it, send
>>>>> an email to ansible...@googlegroups.com.
>>>>> To view this discussion on the web visit
>>>>> https://groups.google.com/d/msgid/ansible-project/a6389e24-f428-4922-b2a2-e5dc8489cbc6o%40googlegroups.com
>>>>> <https://groups.google.com/d/msgid/ansible-project/a6389e24-f428-4922-b2a2-e5dc8489cbc6o%40googlegroups.com?utm_medium=email&utm_source=footer>
>>>>> .
>>>>>
>>>> --
>>> You received this message because you are subscribed to the Google
>>> Groups "Ansible Project" group.
>>> To unsubscribe from this group and stop receiving emails from it, send
>>> an email to ansible-project+unsubscr...@googlegroups.com.
>>> To view this discussion on the web visit
>>> https://groups.google.com/d/msgid/ansible-project/ae6c3fe4-e482-4ac7-a701-d6eeaca4c367o%40googlegroups.com
>>> <https://groups.google.com/d/msgid/ansible-project/ae6c3fe4-e482-4ac7-a701-d6eeaca4c367o%40googlegroups.com?utm_medium=email&utm_source=footer>
>>> .
>>>
>>
--
You received this message because you are subscribed to the Google Groups
"Ansible Project" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to ansible-project+unsubscr...@googlegroups.com.
To view this discussion on the web visit
https://groups.google.com/d/msgid/ansible-project/CALmkhko8%3DMYQqSSSCQ84wFv8j1J0YEgH6gpquJf3tP-UJaVdaw%40mail.gmail.com.
