sir,I want ask the last command isn't need -bK? because I add my client user in sudoers.d ,and try sudo is ok but,in the control mode , when I use command with out -bK,also have the ”Missing sudo password”
Hello, thank you for your question. In my session I'm assuming default ansible.cfg configuration file. You could control the privilege escalation in your playbook with some statement "become", "become_user", "become_method", and "become_flags" or via command-line. You seems more interested in the command line options so I'd recommend to take a look at the following documentation: docs.ansible.com/ansible/latest/user_guide/become.html#become-command-line-options As you could see there are a lot of different combination for privilege escalation methods and parameters. I hope you're successful in your journey. Subscribe to channel for more IT adventures ;-) Luca
здравствуйте, модуль ansible.builtin.fetch не может скачать файл если не дать полные права. А какие права дать пользователю чтобы можно было скачать файлы с удаленного сервера. не давая все прав
this exposes the system. devops can become root anytime, not just while playboo excecution
But this isnt a fix? Its just downgrading my security to allow the other user to run any command?
Thank you comrade. You helped me a lot!
Thank you so much, subscribed your channel
Welcome! Enjoy the Xmas period 😀 and automate more!
Thank you! Subscribed
Thank you so much stuck for hours in this.
You're very welcome!
thank you
amazing. thanks for sharing, i was stuck in this issue.
Glad it helped! Ansible issues are complicated sometimes
sir,I want ask the last command isn't need -bK?
because I add my client user in sudoers.d ,and try sudo is ok
but,in the control mode , when I use command with out -bK,also have the ”Missing sudo password”
Hello, thank you for your question.
In my session I'm assuming default ansible.cfg configuration file. You could control the privilege escalation in your playbook with some statement "become", "become_user", "become_method", and "become_flags" or via command-line. You seems more interested in the command line options so I'd recommend to take a look at the following documentation:
docs.ansible.com/ansible/latest/user_guide/become.html#become-command-line-options
As you could see there are a lot of different combination for privilege escalation methods and parameters.
I hope you're successful in your journey.
Subscribe to channel for more IT adventures ;-)
Luca
@@BertonLuca thank you for help, i found the question, just because my client node's sudoer.d is not work, and then i retype sudoer.d, it's ok
здравствуйте, модуль ansible.builtin.fetch не может скачать файл если не дать полные права. А какие права дать пользователю чтобы можно было скачать файлы с удаленного сервера. не давая все прав
Thank you! you just helped me
I'm so glad! Thank you for sharing your experience. Have a great weekend ;-)
you should only use visudo to create a sudoers file!
Thank you so much su root
I thought you were working