-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathbootstrap.yml
85 lines (74 loc) · 2 KB
/
bootstrap.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
---
##
# Modified to use separate users for different os - before install uniform user and key
- hosts: ubuntu
remote_user: ubuntu
become: true
pre_tasks:
- name: install updates (Ubuntu, Debian)
tags: always
apt:
upgrade: dist
update_cache: yes
when: ansible_distribution in [ "Debian", "Ubuntu"]
- hosts: centos
remote_user: lnxcfg
become: true
pre_tasks:
- name: install update repository cache (CentOS)
tags: always
dnf:
update_cache: yes
when: ansible_distribution == "CentOS"
## Create user and install ssh-key
# CentOS
- hosts: centos
remote_user: lnxcfg
become: true
tasks:
- name: create simone user (CentOS)
tags: centos
ansible.builtin.user:
name: simone
shell: /bin/bash
group: root
- name: add ssh key for simone
tags: always
ansible.posix.authorized_key:
user: simone
key: "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIACBSmFgMek1WjJif8W2Iz4W9YoVMu9wCfiTja+GJq3h ansible"
state: present
- name: add sudoers file for simone (CentOS)
tags: always
ansible.builtin.copy:
content: "simone ALL=(ALL:ALL) NOPASSWD:ALL"
dest: /etc/sudoers.d/simone
owner: root
group: root
mode: 0440
# Ubuntu
- hosts: ubuntu
remote_user: ubuntu
become: true
tasks:
- name: create simone user (Ubuntu)
tags: always
ansible.builtin.user:
name: simone
comment: "imaginary user"
group: sudo
append: yes
- name: add ssh key for simone
tags: always
ansible.posix.authorized_key:
user: simone
state: present
key: "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIACBSmFgMek1WjJif8W2Iz4W9YoVMu9wCfiTja+GJq3h ansible"
- name: add sudoers file for simone (Ubuntu)
tags: always
ansible.builtin.copy:
content: "simone ALL=(ALL:ALL) NOPASSWD:ALL"
dest: /etc/sudoers.d/simone
owner: root
group: root
mode: 0440