Can you confirm the decrypted key is valid by direct ssh? Hard to tell for sure but that looks like the target host is rejecting the key format. Not all key formats are accepted by all targets. I have run in to this with Github and Tenable Scanners.
On Sun, Oct 2, 2022 at 6:15 AM [email protected] <[email protected]> wrote: > I'm using in inventory/group_vars/all.yaml: > .... > *ansible_ssh_private_key_file: '{{inventory_dir}}/group_vars/path/to/key'* > > This Key is working well when it's plain text > When I encrypt the file with ansible-vault, i get the error: > > > > * Load key > "/home/user/projects/ansible/inventory/group_vars/path/to/key": invalid > format root @ SOME_IP: Permission denied (publickey,password). > unreachable: true* > > I am using $*ANSIBLE_VAULT_PASSWORD_FILE *to decrypt everything without > asking for password. > I have other encrypted secrets in all.yaml that get decrypted. > > What am I missing ? > > Thanks! > > -- > You received this message because you are subscribed to the Google Groups > "Ansible Project" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to [email protected]. > To view this discussion on the web visit > https://groups.google.com/d/msgid/ansible-project/04e26c27-8f12-44ef-a2f6-e6055144c7edn%40googlegroups.com > <https://groups.google.com/d/msgid/ansible-project/04e26c27-8f12-44ef-a2f6-e6055144c7edn%40googlegroups.com?utm_medium=email&utm_source=footer> > . > -- You received this message because you are subscribed to the Google Groups "Ansible Project" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/CAEcFzYxBkDxsfFqb1gWz-CEriqn_Q_%3DO1zp_kKiYJX4SytOgKw%40mail.gmail.com.
