Create admin users. Adds an 'ansible' role that provides password-less sudo access, suitable for running Ansible.
None.
You'll need to provide a list of admin users under the variable admin_users. You probably want to put this somewhere global, so that these users are consistently created on all servers. However, you're free to set them on a host-by-host basis as well. name and ssh_pub_key are the only required elements.
admin_users:
- name: ergonlogic # Required.
comment: Christopher Gervais # Optional, defaults to ''.
shell: /bin/bash # Optional, defaults to '/bin/bash'.
groups: 'sudo,adm' # Optional, defaults to 'sudo,adm,ansible'.
password: "$6$r4r..." # Optional, defaults to '*', i.e., no password.
ssh_pub_keys: # Required.
- "ssh-rsa AAAAB3..."
None.
Include as you would any other role. You can optionally add host-specific users like so:
- hosts: servers
vars:
local_admin_users:
- name: joe
ssh_pub_keys:
- "ssh-rsa AAAAB3..."
admin_users: "{{ admin_users + local_admin_users }}"
roles:
- ergonlogic.admin_users
MIT / BSD
This role was created in 2016 by Christopher Gervais.