On Tue, 18 Oct 2022 at 10:02, jer...@gmail.com wrote:
>
> So what is the right approach to secure ssh private key ?
That depends entirely on your situation and its security requirements.
This can mean anything, from not encrypting anything, to fancy HSMs, etc.
In any case, it's not something
So what is the right approach to secure ssh private key ?
On Monday, October 3, 2022 at 3:11:14 PM UTC+3 dnmv...@gmail.com wrote:
> On Mon, 3 Oct 2022 at 14:01, Todd Lewis wrote:
> >
> > I don't think what you're doing is expected to work.
> > ansible_ssh_private_key_file is the path to a
On Mon, 3 Oct 2022 at 14:01, Todd Lewis wrote:
>
> I don't think what you're doing is expected to work.
> ansible_ssh_private_key_file is the path to a private key file used by ssh.
> That you happen to point it at a file in {{inventory_dir}}/group_vars doesn't
> somehow make ssh able to
I don't think what you're doing is expected to work.
*ansible_ssh_private_key_file* is the path to a private key file used by
ssh. That you happen to point it at a file in *{{inventory_dir}}/group_vars*
doesn't somehow make ssh able to decrypt ansible-vault encrypted files.
On Sunday, October
This sounds like the key is cached by some agent. Investigate that.
On Mon, 3 Oct 2022 at 10:41, jer...@gmail.com wrote:
> Hmm, it seems it's not an ansible issue, when i decrypt the key and try it
> works. Then encrypting the key, it still works. After few minutes, it stop
> working...
> From
Hmm, it seems it's not an ansible issue, when i decrypt the key and try it
works. Then encrypting the key, it still works. After few minutes, it stop
working...
>From ansible on ubuntu 18.04 (python 3.6) to target 20.04
#: ansible --version
[DEPRECATION WARNING]: Ansible will require Python 3.8
Can you provide a minimal Ansible playbook with a vaulted variable file to
see if we can recreate it or see anything amiss?
The error message you're showing states "root @ SOME_IP: Permission denied
(publickey,password)" which doesn't seem to be ansible-vault related.
On Sunday, October 2,