How can privileged commands be executed on a target node using Ansible when the ssh user has no sudo access but the become user has sudo ALL access?

shell

asked 2022-11-12 11:00:00 +0000

pufferfish
41 ●3 ●2

edit retag flag offensive close merge delete

add a comment

1 Answer

Sort by » oldest newest most voted

answered 2021-09-28 12:00:00 +0000

lalupa
21 ●1 ●1

This can be achieved using the become feature in Ansible.

First, add the become user in the inventory for the target node under the ansible_become_user variable. For example:

[target_node]
192.168.1.100 ansible_become_user=root

Then, add the become password for the become user in the inventory under the ansible_become_password variable. You can also store the become password in an encrypted file using Ansible vault.
In the playbook, use the become keyword to tell Ansible to switch to the become user before executing the privileged command. For example:

- name: Execute privileged command on target node
  become: true
  shell: /usr/bin/privileged-command

This will execute /usr/bin/privileged-command on the target node as the become user, which has sudo ALL access.

edit flag offensive delete link

add a comment

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account. This space is reserved only for answers. If you would like to engage in a discussion, please instead post a comment under the question or an answer that you would like to discuss

Add Answer

Question Tools

Stats

Asked: 2022-11-12 11:00:00 +0000

Seen: 10 times

Last updated: Sep 28 '21

How can privileged commands be executed on a target node using Ansible when the ssh user has no sudo access but the become user has sudo ALL access? edit

1 Answer