[ansible-project] Ansible: how to restart auditd service on CentOS7 when it appears you cant even do it via native systeml command

In my playbook, i have a task to update audit.rules and then notify a handler which should restart the auditd service. task: - name: 6.6.7 - audit rules configuration template: src=X/ansible/templates/auditd_rules.j2 dest=/etc/audit/rules.d/audit.rules

[ansible-project] Re: How to run Ansible from web server?

I'm having the same issue. We're trying to run playbooks from Flask behind gunicorn as a non-root user and we're getting that same error. I've confirmed that user has full r/w/x access to the directory it's complaining about, but it still won't work. I can also run playbooks from the

[ansible-project] Re: Help test WinRM updates for NTLM, kerb delegation

Hi Matt, Poking this topic after a long gap--I'm just watching your webcast on ansible.com. Did the transport=ntlm stuff get integrated yet? I've just installed 2.3.0 (devel 1da20c9716) and it still doesn't seem to be there. Regards, Charles -- You received this message because you are

[ansible-project] Re: Ansible philosophy for those new to the list == keep it simple

On the matter of philosophy, as someone who has taken care of infrastructure for a while but who is new to Ansible, here is my general take. What do you think? How does it compare with your vision? * A deployment script is primarily a declaration of intended state. (E.g. logical volume X

[ansible-project] Ansible Offline Installation RHEL7 RPM needed for python-paramiko and python-crypto2

I am doing Ansible offline installation behind the corporate firewall by downloading individual packages but the two packages* python-crypto2 and python-paramiko* not able to find for download/installation to Redhat Linux 7 version machine .Any reference will be great help. Thanks in advance

[ansible-project] How to handle passwords with the vault

I'm using Ansible to orchestrate a bunch of VM, as expected. I want to run commands as root, so I have the root password in a file in group_vars, so /etc/ansible/group_vars/vault, which I've encrypted with ansible-vault. I understand from the Best Practices

[ansible-project] Creating Security Groups with EC2_group mod

I've had great success in building out my security groups with this module, until today. The issue is that I cannot code in yaml a destination referencing a prefix-list. "pl-XX" Is this supported? Or planned in the future? -- You received this message because you are subscribed to the

[ansible-project] ec2_group with permit all

Anyone know how to create an ansible aws ec2_group ingress rule to permit all traffic or permit custom protocol esp(50) ipsec ? -- You received this message because you are subscribed to the Google Groups "Ansible Project" group. To unsubscribe from this group and stop receiving emails from

[ansible-project] Re: Help test WinRM updates for NTLM, kerb delegation

Ah, another d'oh! moment. Got the python component via pip install "pywinrm>=0.1.1" Is that all that's needed? And is there any documentation--other than your webcast?? cm -- You received this message because you are subscribed to the Google Groups "Ansible Project" group. To unsubscribe

[ansible-project] ec2_group not able to et prefix list as destination

Is this supported in this release? Are there plans to allow for such in the future? This is the sample of what I have in my yaml file. rules_egress: - proto: tcp from_port: 443 to_port: 443 group_id: pl-XX -- You received this message

[ansible-project] How to do password management

Hi Struggling to get my head around this. According to the best practices, I've put the root password for all the vms in a vault encrypted file, and the variables are vault_ prefixed as suggested in

[ansible-project] service module with Slackware

I am finding that the service module in the core ansible modules does not work for starting/stopping services on a Slackware system. Slackware, as you might know, does not use the same startup script systems that most Linux distributions use. It uses something much more BSD like, but not

[ansible-project] Ansible dynamic inventory, AWS and ec2_dns_name

Using the ec2.py script, I am trying to select an AWS machine by ec2_dns_name. It always seems to not match: e$ ansible -i ./ec2.py ec2-34-192-103-30.compute-1.amazonaws.com -m ping [WARNING]: No hosts matched, nothing to do The output from the ec2.py script regarding the DNS name is this:

Re: [ansible-project] Ansible Can not handle .tar.gz file and gives error

Actually, I do not have set any proxy environment variable in my Linux environment. By using *unarchive* module in the Ansible playbook it shows the below error. fatal: [192.168.1.223]: FAILED! => {"changed": false, "failed": true, "msg": "Failed to find handler for

[ansible-project] Ansible Security Mechanisms

There's lots you can do, but up to you what is an appropriate level of risk. Using vault to encrypt all credentials for connecting to your hosts and not storing your vault password on disk would help. You could keep your ansible configuration in source control and build a new ansible

[ansible-project] Re: Ansible win_package product_id value not available while installing ruby

You can probably workaround by using win_command or raw to run msiexec. Unfortunately there are a few .msi installers around which don't write a product id. Might be worth raising a bug on the rubyinstaller site, as its really a poorly made installer that is causing the problem here. Jon --

[ansible-project] Re: Running PowerCli scripts within PowerShell scripts in Ansible

Hi, I am not aware of modules for the vmware products you mention. I don't know why things are working with 6.0 but not 6.5. My guess is 6.5 is perhaps just using more memory than 6.0 and so you are hitting the memory usage quota. Jon -- You received this message because you are subscribed

[ansible-project] Re: Ansible win_package product_id value not available while installing ruby

If it doesn't write to HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ or HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ then you won't be able to use win_package to install it. On Thursday, December 8, 2016 at 3:55:20 PM UTC+1,

Re: [ansible-project] Ansible Can not handle .tar.gz file and gives error

It's not looking very much like an Ansible problem from where I'm sat. Do you have e.g. a proxy environment variable set in your shell running wget that you haven't set in the ansible task? On 9 December 2016 at 15:42, Balu Kompalli wrote: >> Yes, That link is fine. But

[ansible-project] Ansilbe apt handling of dpkg_options

I am attempting to perform the follow in order to only upgrade ubuntu security updates... apt: upgrade=yes update_cache=yes dpkg_options='Dir::Etc::SourceList=/etc/apt/security.sources.list' and I receive the following error message... FAILED! => {"changed": false, "failed": true, "msg":

Re: [ansible-project] Ansible Can not handle .tar.gz file and gives error

> > Yes, That link is fine. But When I used the *wget * it gave error *fatal: [192.168.1.223]: FAILED! => {"changed": true, "cmd": ["wget", "--no-check-certificate", "-c", "--header", "Cookie: oraclelicense=accept-securebackup-cookie",

Re: [ansible-project] Re: How to add something to ansible_facts?

However I do have another question: Is there a way to easily filter this list to at least exclude the temporary variables that got introduced during the playbook run, for example from "register" ? -- You received this message because you are subscribed to the Google Groups "Ansible Project"

Re: [ansible-project] Re: How to add something to ansible_facts?

@Kai Stian Olstad Thank you, the magic that is hostvars[inventory_hostname] was exactly what I was looking for! -- You received this message because you are subscribed to the Google Groups "Ansible Project" group. To unsubscribe from this group and stop receiving emails from it, send an email

Re: [ansible-project] When will Ansible 2.3 be released?

On 09.12.2016 11:49, Tim wrote: Hi, I need some module updates included in the next Ansible version (2.3). I searched for estimated release dates, but didn't find anything. Has anybody an idea how long it could take or more general: how often does Ansible get updated? Any ETAs?

Re: [ansible-project] Ansible Can not handle .tar.gz file and gives error

Hi Balu, If you did something like this: wget http://download.oracle.com/otn-pub/java/jdk/8u112-b15/jdk-8u112-linux-x64.tar.gz then you've downloaded the html page saying you have to accept the OTN license terms. Can you check the filesize of the downloaded file? If your file is 100+MB then

[ansible-project] Ansible Can not handle .tar.gz file and gives error

Hello Team, I got the below error. I tried So many things which were failed to do things good. If you have any knowledge to rectify this error, please inform the references or commands to use. *fatal: [192.168.1.223]: FAILED! => {"changed": false, "failed": true, "msg": "Failed to find

[ansible-project] When will Ansible 2.3 be released?

Hi, I need some module updates included in the next Ansible version (2.3). I searched for estimated release dates, but didn't find anything. Has anybody an idea how long it could take or more general: how often does Ansible get updated? Any ETAs? -- You received this message because you are

[ansible-project] Re: How to perform tasks only one host, based on previous output

No guru's who can reply? -- You received this message because you are subscribed to the Google Groups "Ansible Project" group. To unsubscribe from this group and stop receiving emails from it, send an email to ansible-project+unsubscr...@googlegroups.com. To post to this group, send email to