qusal/salt/ansible/README.md

1.2 KiB

ansible

Ansible environment in Qubes OS.

Table of Contents

Description

Install Ansible and use it on the "ansible" app qube.

Installation

  • Top
sudo qubesctl top.enable ansible
sudo qubesctl --targets=tpl-ansible,ansible,ansible-minion state.apply
sudo qubesctl top.disable ansible
  • State
sudo qubesctl state.apply ansible.create
sudo qubesctl --skip-dom0 --targets=tpl-ansible state.apply ansible.install
sudo qubesctl --skip-dom0 --targets=ansible state.apply ansible.configure
sudo qubesctl --skip-dom0 --targets=ansible-minion state.apply ansible.configure-minion

Usage

Configure the control node ansible:

ssh-keygen -t ed25519 -N "" -f ~/.ssh/id_ansible
qvm-copy ~/.ssh/id_ansible.pub

Select ansible-minion as the target qube for the copy operation.

Configure the minion ansible-minion:

mkdir -m 0700 ~/.ssh
cat ~/QubesIncoming/ansible/id_ansible.pub >> ~/.ssh/authorized_keys

From the control node ansible, test connection to the minion ansible-minion:

ssh minion