Introduction To Ansible Tutorial

Posted on 11/11/201617/03/2018 by İsmail Baydan

https://www.poftut.com/introduction-to-ansible-tutorial/

Hi today we will look to a system management automation tool named Ansible. There is a lot of tool in this category but Ansible is different with being agent-less. Yes you read it right it is client-less and developed in python language. Ansible architecture is very simple which made by a manager which must be Linux and the systems managed which may be Linux, BSD or Windows. There are some differences in windows but it is not a problem after setup Ansible. All systems managed by the same way. In Linux and BSD connection made over ssh but in windows RMI protocol. This is enough lets start typing commands.

Install Ansible

Firstly we use fedora for manager and we should install ansible only on this system. Below command install ansible on the manager

Ubuntu, Debian, Mint, Kali

$ sudo apt install ansible

1	$ sudo apt install ansible

Fedora, CentOS, RHEL

$ sudo yum install ansible -y

1	$ sudo yum install ansible -y

Password-less Connection

And then create ssh-id if it doesn’t exist. We can skip key generation questions with enter without giving any value.

$ ssh-keygen

1	$ ssh-keygen

Than we will install the keys to the remote managed system with ssh-id-copy command. Now we are ready to use ansible in simple way.

$ ssh-copy-id ismail@192.168.122.165

1	$ ssh-copy-id ismail@192.168.122.165

Inventory and Hosts

Ansible uses its hosts file which is named as Inventory to get information about remote systems. We can group hosts in this inventory file.

Add this host (192.168.122.165) to the Add host inventory . Here myex is group name which covers hosts listed below. For now I just add one host

LEARN MORE What is VPN and VPN Tunnel with Free Vpn List?

$ sudo vim /etc/ansible/hosts

[myex]
192.168.122.165

$ sudo vim /etc/ansible/hosts

[myex]

192.168.122.165

Ping Hosts and Check Connectivity

Now we can use ansible. We use ping module with -m option ans by specifying group name. We can use all for all inventory hosts.

$ ansible myex -m ping

1	$ ansible myex -m ping

Run Ad Hoc Command

We can specify pure commands to run on remote system with -a option. Ad Hoc command provides us the ability to run a command on the remote systems. In this example we will print the passwd file with cat command.

$ ansible myex -a "cat /etc/passwd"

1	$ ansible myex -a "cat /etc/passwd"

Debug Ansible and Verbose Output

If we need to debug Ansible work we can use -vvv flags where count of v decides the debug level. As you can see below connection username and remote module is specified and than ssh connection is made with specified parameters if you have a problem with ssh connection you can find detailed info about the problem here. There is Ansible verbs EXEC, PUT etc.

$ ansible myex -a "cat /etc/passwd" -vvv

1	$ ansible myex -a "cat /etc/passwd" -vvv

Run Sudo On Remote System

We can use sudo privileges on remote system with --sudo and specify sudo user with –sudo-user .

$ ansible myex -a "/bin/cat /etc/passwd" --sudo

1	$ ansible myex -a "/bin/cat /etc/passwd" --sudo

Ansible Configuration

Because ansible use ssh we can disable ssh host key checking by uncommenting below line

$ sudo vim /etc/ansible/ansible.cfg

# additional paths to search for roles in, colon separated
#roles_path = /etc/ansible/roles

# uncomment this to disable SSH key host checking
host_key_checking = False
<div style="clear:both; margin-top:0em; margin-bottom:1em;"><a href="https://www.poftut.com/linux-x11-connection-rejected-wrong-authentication-error-solution/" target="_blank" rel="nofollow" class="u93c4057a7f81696c108ea3c99575847c"><!-- INLINE RELATED POSTS 2/3 //--><style> .u93c4057a7f81696c108ea3c99575847c , .u93c4057a7f81696c108ea3c99575847c .postImageUrl , .u93c4057a7f81696c108ea3c99575847c .centered-text-area { min-height: 80px; position: relative; } .u93c4057a7f81696c108ea3c99575847c , .u93c4057a7f81696c108ea3c99575847c:hover , .u93c4057a7f81696c108ea3c99575847c:visited , .u93c4057a7f81696c108ea3c99575847c:active { border:0!important; } .u93c4057a7f81696c108ea3c99575847c .clearfix:after { content: ""; display: table; clear: both; } .u93c4057a7f81696c108ea3c99575847c { display: block; transition: background-color 250ms; webkit-transition: background-color 250ms; width: 100%; opacity: 1; transition: opacity 250ms; webkit-transition: opacity 250ms; background-color: #ECF0F1; box-shadow: 0 1px 2px rgba(0, 0, 0, 0.17); -moz-box-shadow: 0 1px 2px rgba(0, 0, 0, 0.17); -o-box-shadow: 0 1px 2px rgba(0, 0, 0, 0.17); -webkit-box-shadow: 0 1px 2px rgba(0, 0, 0, 0.17); } .u93c4057a7f81696c108ea3c99575847c:active , .u93c4057a7f81696c108ea3c99575847c:hover { opacity: 1; transition: opacity 250ms; webkit-transition: opacity 250ms; background-color: #D35400; } .u93c4057a7f81696c108ea3c99575847c .centered-text-area { width: 100%; position: relative; } .u93c4057a7f81696c108ea3c99575847c .ctaText { border-bottom: 0 solid #fff; color: #3498DB; font-size: 16px; font-weight: bold; margin: 0; padding: 0; text-decoration: underline; } .u93c4057a7f81696c108ea3c99575847c .postTitle { color: #27AE60; font-size: 16px; font-weight: 600; margin: 0; padding: 0; width: 100%; } .u93c4057a7f81696c108ea3c99575847c .ctaButton { background-color: #e6e6e6!important; color: #3498DB; border: none; border-radius: 3px; box-shadow: none; font-size: 14px; font-weight: bold; line-height: 26px; moz-border-radius: 3px; text-align: center; text-decoration: none; text-shadow: none; width: 80px; min-height: 80px; background: url(https://www.poftut.com/wp-content/plugins/intelly-related-posts/assets/images/simple-arrow.png)no-repeat; position: absolute; right: 0; top: 0; } .u93c4057a7f81696c108ea3c99575847c:hover .ctaButton { background-color: #E67E22!important; } .u93c4057a7f81696c108ea3c99575847c .centered-text { display: table; height: 80px; padding-left: 18px; top: 0; } .u93c4057a7f81696c108ea3c99575847c .u93c4057a7f81696c108ea3c99575847c-content { display: table-cell; margin: 0; padding: 0; padding-right: 108px; position: relative; vertical-align: middle; width: 100%; } .u93c4057a7f81696c108ea3c99575847c:after { content: ""; display: block; clear: both; } </style><div class="centered-text-area"><div class="centered-text" style="float: left;"><div class="u93c4057a7f81696c108ea3c99575847c-content"><span class="ctaText">LEARN MORE</span>  <span class="postTitle">Linux X11 Connection Rejected Because of Wrong Authentication Error and Solution</span></div></div></div><div class="ctaButton"></div></a></div>
# change this for alternative sudo implementations

$ sudo vim /etc/ansible/ansible.cfg

# additional paths to search for roles in, colon separated

#roles_path = /etc/ansible/roles

# uncomment this to disable SSH key host checking

host_key_checking = False

# change this for alternative sudo implementations

Sometimes there are a lot of systems to manage and run commands. We can make ansible work parallel with -f option

$ ansible all -a "ls ~ismail" --sudo -f 10

1	$ ansible all -a "ls ~ismail" --sudo -f 10