There several ways to do this, Ansible has an authorized_keys module that can do the copying, the user module can also generate keys. But it does need to log onto the servers, the first time it can use user/password as part of a bootstrapping play.
As for root vs shared user with sudo vs individual users with sudo ... it does not matter to Ansible, do what fits your policy and worfklow better. FYI, sudo is not the only privilege escalation method supported, just used as example. -- ---------- Brian Coca -- You received this message because you are subscribed to the Google Groups "Ansible Project" group. To unsubscribe from this group and stop receiving emails from it, send an email to ansible-project+unsubscr...@googlegroups.com. To post to this group, send email to ansible-project@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/CACVha7c3nhHtf59n44ARBhzc_Kco7q7ep3qbj6NZzaT0VBi3mg%40mail.gmail.com. For more options, visit https://groups.google.com/d/optout.