Ansible 运维问题
1. 当应用系统的服务器设置了禁止root用户的ssh登录,只允许使用普通用户操作
[soupman@cl-server ~]$ ansible cl-node03 -m yum -a 'name=htop state=present'
cl-node03 | FAILED! => {
"ansible_facts": {
"discovered_interpreter_python": "/usr/bin/python"
},
"changed": false,
"changes": {
"installed": [
"htop"
]
},
"msg": "You need to be root to perform this command.\n",
"rc": 1,
"results": [
"Loaded plugins: fastestmirror\n"
]
}
[soupman@cl-server ~]$ vi /etc/ansible/ansible.cfg
[privilege_escalation]
become=True
become_method=sudo
become_user=root
become_ask_pass=False
[soupman@cl-server ~]$ ansible cl-node03 -m service -a 'name=supervisord state=restarted'
cl-node03 | FAILED! => {
"ansible_facts": {
"discovered_interpreter_python": "/usr/bin/python"
},
"changed": false,
"module_stderr": "Shared connection to cl-node03 closed.\r\n",
"module_stdout": "sudo: 需要密码\r\n",
"msg": "MODULE FAILURE\nSee stdout/stderr for the exact error",
"rc": 1
}
[root@cl-node03 ~]# visudo
soupman ALL=(ALL) NOPASSWD: ALL
[soupman@cl-server ~]$ ansible cl-node03 -m service -a 'name=rsyslog state=restarted'
cl-node03 | CHANGED => {
"ansible_facts": {
"discovered_interpreter_python": "/usr/bin/python"
},
"changed": true,
[soupman@cl-server ~]$ ansible cl-node03 -m yum -a 'name=htop state=present'
cl-node03 | CHANGED => {
"ansible_facts": {
"discovered_interpreter_python": "/usr/bin/python"
},
"changed": true,