In my playbook, i have a task to update audit.rules and then notify a
handler which should restart the auditd service.
task:
- name: 6.6.7 - audit rules configuration
template: src=X/ansible/templates/auditd_rules.j2
dest=/etc/audit/rules.d/audit.rules
I'm having the same issue. We're trying to run playbooks from Flask behind
gunicorn as a non-root user and we're getting that same error. I've
confirmed that user has full r/w/x access to the directory it's complaining
about, but it still won't work. I can also run playbooks from the
Hi Matt,
Poking this topic after a long gap--I'm just watching your webcast on
ansible.com. Did the transport=ntlm stuff get integrated yet? I've just
installed 2.3.0 (devel 1da20c9716) and it still doesn't seem to be there.
Regards,
Charles
--
You received this message because you are
On the matter of philosophy, as someone who has taken care of
infrastructure for a while but who is new to Ansible, here is my general
take. What do you think? How does it compare with your vision?
* A deployment script is primarily a declaration of intended state. (E.g.
logical volume X
I am doing Ansible offline installation behind the corporate firewall by
downloading individual packages but the two packages* python-crypto2 and
python-paramiko*
not able to find for download/installation to Redhat Linux 7 version
machine .Any reference will be great help. Thanks in advance
I'm using Ansible to orchestrate a bunch of VM, as expected. I want to run
commands as root, so I have the root password in a file in group_vars, so
/etc/ansible/group_vars/vault, which I've encrypted with ansible-vault.
I understand from the Best Practices
I've had great success in building out my security groups with this module,
until today.
The issue is that I cannot code in yaml a destination referencing a
prefix-list. "pl-XX"
Is this supported? Or planned in the future?
--
You received this message because you are subscribed to the
Anyone know how to create an ansible aws ec2_group ingress rule to permit
all traffic or permit custom protocol esp(50) ipsec ?
--
You received this message because you are subscribed to the Google Groups
"Ansible Project" group.
To unsubscribe from this group and stop receiving emails from
Ah, another d'oh! moment.
Got the python component via
pip install "pywinrm>=0.1.1"
Is that all that's needed? And is there any documentation--other than your
webcast??
cm
--
You received this message because you are subscribed to the Google Groups
"Ansible Project" group.
To unsubscribe
Is this supported in this release?
Are there plans to allow for such in the future?
This is the sample of what I have in my yaml file.
rules_egress:
- proto: tcp
from_port: 443
to_port: 443
group_id: pl-XX
--
You received this message
Hi
Struggling to get my head around this. According to the best practices,
I've put the root password for all the vms in a vault encrypted file, and
the variables are vault_ prefixed as suggested in
I am finding that the service module in the core ansible modules does not
work for starting/stopping services on a Slackware system. Slackware, as
you might know, does not use the same startup script systems that most
Linux distributions use. It uses something much more BSD like, but not
Using the ec2.py script, I am trying to select an AWS machine by
ec2_dns_name. It always seems to not match:
e$ ansible -i ./ec2.py ec2-34-192-103-30.compute-1.amazonaws.com -m ping
[WARNING]: No hosts matched, nothing to do
The output from the ec2.py script regarding the DNS name is this:
Actually, I do not have set any proxy environment variable in my Linux
environment. By using *unarchive* module in the Ansible playbook it shows
the below error.
fatal: [192.168.1.223]: FAILED! => {"changed": false, "failed": true,
"msg": "Failed to find handler for
There's lots you can do, but up to you what is an appropriate level of risk.
Using vault to encrypt all credentials for connecting to your hosts and not
storing your vault password on disk would help.
You could keep your ansible configuration in source control and build a new
ansible
You can probably workaround by using win_command or raw to run msiexec.
Unfortunately there are a few .msi installers around which don't write a
product id. Might be worth raising a bug on the rubyinstaller site, as its
really a poorly made installer that is causing the problem here.
Jon
--
Hi,
I am not aware of modules for the vmware products you mention.
I don't know why things are working with 6.0 but not 6.5. My guess is 6.5 is
perhaps just using more memory than 6.0 and so you are hitting the memory usage
quota.
Jon
--
You received this message because you are subscribed
If it doesn't write
to
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\
or HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\
then you won't be able to use win_package to install it.
On Thursday, December 8, 2016 at 3:55:20 PM UTC+1,
It's not looking very much like an Ansible problem from where I'm sat.
Do you have e.g. a proxy environment variable set in your shell
running wget that you haven't set in the
ansible task?
On 9 December 2016 at 15:42, Balu Kompalli wrote:
>> Yes, That link is fine. But
I am attempting to perform the follow in order to only upgrade ubuntu
security updates...
apt: upgrade=yes update_cache=yes
dpkg_options='Dir::Etc::SourceList=/etc/apt/security.sources.list'
and I receive the following error message...
FAILED! => {"changed": false, "failed": true, "msg":
>
> Yes, That link is fine. But When I used the *wget * it gave error
*fatal: [192.168.1.223]: FAILED! => {"changed": true, "cmd": ["wget",
"--no-check-certificate", "-c", "--header", "Cookie:
oraclelicense=accept-securebackup-cookie",
However I do have another question:
Is there a way to easily filter this list to at least exclude the temporary
variables that got introduced during the playbook run, for example from
"register" ?
--
You received this message because you are subscribed to the Google Groups
"Ansible Project"
@Kai Stian Olstad
Thank you, the magic that is hostvars[inventory_hostname] was exactly what
I was looking for!
--
You received this message because you are subscribed to the Google Groups
"Ansible Project" group.
To unsubscribe from this group and stop receiving emails from it, send an email
On 09.12.2016 11:49, Tim wrote:
Hi,
I need some module updates included in the next Ansible version (2.3).
I
searched for estimated release dates, but didn't find anything. Has
anybody
an idea how long it could take or more general: how often does Ansible
get
updated? Any ETAs?
Hi Balu,
If you did something like this:
wget
http://download.oracle.com/otn-pub/java/jdk/8u112-b15/jdk-8u112-linux-x64.tar.gz
then you've downloaded the html page saying you have to accept the OTN license
terms.
Can you check the filesize of the downloaded file?
If your file is 100+MB then
Hello Team,
I got the below error. I tried So many things which were failed to do
things good. If you have any knowledge to rectify this error, please inform
the references or commands to use.
*fatal: [192.168.1.223]: FAILED! => {"changed": false, "failed": true,
"msg": "Failed to find
Hi,
I need some module updates included in the next Ansible version (2.3). I
searched for estimated release dates, but didn't find anything. Has anybody
an idea how long it could take or more general: how often does Ansible get
updated? Any ETAs?
--
You received this message because you are
No guru's who can reply?
--
You received this message because you are subscribed to the Google Groups
"Ansible Project" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to ansible-project+unsubscr...@googlegroups.com.
To post to this group, send email to
28 matches
Mail list logo