This assumes that your inventory consists of hosts named boxes
to which all these playbooks apply. Modify to taste.
The group_vars.sample
directory contains an example of the group variables that need to be set up. You can edit these to fit your needs. The password for the vault files is password
. You'll probably want to replace them using ansible-vault create
.
To make things easier to manage, I create a separate repository called with my [rivate group variables and add a symlink at the top-level to that named group_vars
.
- Set up
group_vars/common
with auser_name
, crypteduser_password
anduser_ssh_pubkey
ansible-playbook -i ansible_source_dir/contrib/inventory/linode.py --ask-pass --ask-vault-pass init.yml
- You will likely need to do a manual SSH first so
--ask-pass
doesn't complain about the host not being inknown_hosts
- You will likely need to do a manual SSH first so
- Will be run as root
- Sets up a new user
- Sets up sshd config to not allow root access
- Add a
mariadb_password
variable togroup_vars/db
(suggested that you use a vault) ansible-playbook -i ansible_source_dir/contrib/inventory/linode.py --ask-become-pass --ask-vault-pass setup.yml
- Sets up the box to host the services that are needed