My personal workstation setup as ansible playbooks.
-
install ansible
~ yay ansible
-
obtain secrets and vault_key from keepass
~ ansible-playbook main.yaml --ask-become-pass --vault-password-file ~/.vault_key
~ cat secrets/ldap_pass.secret | ansible-vault encrypt_string --stdin-name 'ldap_pass' --vault-password-file ~/.vault_key
~ ansible-vault encrypt ta-client1dev.key.enc --vault-password-file ~/.vault_key
~ ansible-vault edit files/client1-vpn/client1-vpn.nmconnection.enc --vault-password-file ~/.vault_key