mirror of
https://github.com/ben-grande/qusal.git
synced 2024-12-26 16:09:47 -05:00
54 lines
1.2 KiB
Markdown
54 lines
1.2 KiB
Markdown
# ansible
|
|
|
|
Ansible environment in Qubes OS.
|
|
|
|
## Table of Contents
|
|
|
|
* [Description](#description)
|
|
* [Installation](#installation)
|
|
* [Usage](#usage)
|
|
|
|
## Description
|
|
|
|
Install Ansible and use it on the "ansible" app qube.
|
|
|
|
## Installation
|
|
|
|
- Top
|
|
```sh
|
|
sudo qubesctl top.enable ansible
|
|
sudo qubesctl --targets=tpl-ansible,ansible,ansible-minion state.apply
|
|
sudo qubesctl top.disable ansible
|
|
```
|
|
|
|
- State
|
|
<!-- pkg:begin:post-install -->
|
|
```sh
|
|
sudo qubesctl state.apply ansible.create
|
|
sudo qubesctl --skip-dom0 --targets=tpl-ansible state.apply ansible.install
|
|
sudo qubesctl --skip-dom0 --targets=ansible state.apply ansible.configure,zsh.touch-zshrc
|
|
sudo qubesctl --skip-dom0 --targets=ansible-minion state.apply ansible.configure-minion,zsh.touch-zshrc
|
|
```
|
|
<!-- pkg:end:post-install -->
|
|
|
|
## Usage
|
|
|
|
Configure the control node `ansible`:
|
|
```sh
|
|
ssh-keygen -t ed25519 -N "" -f ~/.ssh/id_ansible
|
|
qvm-copy ~/.ssh/id_ansible.pub
|
|
```
|
|
Select `ansible-minion` as the target qube for the copy operation.
|
|
|
|
Configure the minion `ansible-minion`:
|
|
```sh
|
|
mkdir -m 0700 ~/.ssh
|
|
cat ~/QubesIncoming/ansible/id_ansible.pub >> ~/.ssh/authorized_keys
|
|
```
|
|
|
|
From the control node `ansible`, test connection to the minion
|
|
`ansible-minion`:
|
|
```sh
|
|
ssh minion
|
|
```
|