Book Image

Learning Ansible 2.7 - Third Edition

By : Fabio Alessandro Locati
Book Image

Learning Ansible 2.7 - Third Edition

By: Fabio Alessandro Locati

Overview of this book

Ansible is an open source automation platform that assists organizations with tasks such as application deployment, orchestration, and task automation. With the release of Ansible 2.7, even complex tasks can be handled much more easily than before. Learning Ansible 2.7 will help you take your first steps toward understanding the fundamentals and practical aspects of Ansible by introducing you to topics such as playbooks, modules, and the installation of Linux, Berkeley Software Distribution (BSD), and Windows support. In addition to this, you will focus on various testing strategies, deployment, and orchestration to build on your knowledge. The book will then help you get accustomed to features including cleaner architecture, task blocks, and playbook parsing, which can help you to streamline automation processes. Next, you will learn how to integrate Ansible with cloud platforms such as Amazon Web Services (AWS) before gaining insights into the enterprise versions of Ansible, Ansible Tower and Ansible Galaxy. This will help you to use Ansible to interact with different operating systems and improve your working efficiency. By the end of this book, you will be equipped with the Ansible skills you need to automate complex tasks for your organization.
Table of Contents (18 chapters)
Free Chapter
1
Section 1: Creating a Web Server Using Ansible
4
Section 2: Deploying Playbooks in a Production Environment
9
Section 3: Deploying an Application with Ansible
13
Section 4: Deploying an Application with Ansible

Encrypting user passwords

Ansible Vault takes care of passwords that are checked in and helps you to handle them while running Ansible playbooks or commands. However, when Ansible plays are run, at times, you might need your users to enter passwords. You also want to make sure that these passwords don't appear in the comprehensive Ansible logs (the default /var/log/ansible.log location) or on stdout.

Ansible uses Passlib, which is a password-hashing library for Python, to handle encryption for prompted passwords. You can use any of the following algorithms supported by Passlib:

  • des_crypt: DES crypt
  • bsdi_crypt: BSDi crypt
  • bigcrypt: BigCrypt
  • crypt16: Crypt16
  • md5_crypt: MD5 crypt
  • bcrypt: BCrypt
  • sha1_crypt: SHA-1 crypt
  • sun_md5_crypt: Sun MD5 crypt
  • sha256_crypt: SHA-256 crypt
  • sha512_crypt: SHA-512 crypt
  • apr_md5_crypt: Apache's MD5-crypt variant
  • phpass: PHPass portable hash...