[ansible-project] New releases: ansible-core 2.12.1, ansible-core 2.11.7, ansible-base 2.10.16

llowing link to report the regression: https://github.com/ansible/ansible/issues/new/choose In your issue, be sure to mention the version that works and the one that doesn't. Thanks! -Matt Davis, Ansible Core Engineering -- You received this message because you are subscribed to the Goo

[ansible-project] New Ansible release 2.9.0rc5

any of your working playbooks break when you upgrade to 2.9.0rc5, please use the following link to report the regression: https://github.com/ansible/ansible/issues/new/choose In your issue, be sure to mention the Ansible version that works and the one that doesn't. Thanks! -Matt Dav

[ansible-project] New Ansible releases 2.7.15, 2.8.7, and 2.9.1

mention the Ansible version that works and the one that doesn't. Thanks! -Matt Davis -- You received this message because you are subscribed to the Google Groups "Ansible Project" group. To unsubscribe from this group and stop receiving emails from it, send an email to ansible-p

[ansible-project] New Ansible release 2.9.2

regression: https://github.com/ansible/ansible/issues/new/choose In your issue, be sure to mention the Ansible version that works and the one that doesn't. Thanks! -Matt Davis -- You received this message because you are subscribed to the Google Groups "Ansible Project" group. To u

[ansible-project] New Ansible releases 2.9.3, 2.8.8, and 2.7.16

e/ansible/issues/new/choose In your issue, be sure to mention the Ansible version that works and the one that doesn't. Thanks! -Matt Davis -- You received this message because you are subscribed to the Google Groups "Ansible Project" group. To unsubscribe from this group and sto

[ansible-project] New Ansible release 2.9.4

you upgrade to 2.9.4, please use the following link to report the regression: https://github.com/ansible/ansible/issues/new/choose In your issue, be sure to mention the Ansible version that works and the one that doesn't. Thanks! -Matt Davis -- You received this message because you are

Re: [ansible-project] OS support contribution guidelines

ew more of the barriers to a hypothetical native-Windows Ansible. -Matt Davis (@nitzmahone) -- You received this message because you are subscribed to the Google Groups "Ansible Project" group. To unsubscribe from this group and stop receiving emails from it, send an email to ansible-pro

[ansible-project] Re: Where is ansible when installing via pip?

Assuming you're using the OS packaged version of pip from apt (python-pip). Ubuntu at some point changed their pip to install to ~/.local/bin, which should be added to your PATH by the Ubuntu default ~/.profile. If you've removed that or in some other way aren't using it, make sure to add ~/.lo

Re: [ansible-project] Configuring Ansible to run play books through a bastion host on aws/ec2

I've been hacking around this for my AWS VPCs by having my VPC setup playbook drop an ansible.cfg in the playbook dir with the appropriate ProxyCommand ssh_args set to use the jump box. When it gets to provisioning, it fails (since it can't re-read ansible.cfg), then we re-run the VPC setup and

Re: [ansible-project] Configuring Ansible to run play books through a bastion host on aws/ec2

It sounds like everyone's in agreement that the first step needs to be the ability to dynamically set the SSH proxy (and I'd argue that we need proxy_host, proxy_port, and proxy_user). I'm going to start there, since anything else would need to build on that anyway. On Wednesday, October 29, 2

Re: [ansible-project] Configuring Ansible to run play books through a bastion host on aws/ec2

I suppose I could do both. I personally prefer the explicit vars- I find it makes the playbooks more readable and maintainable than deciphering ssh_args line noise. I can see where it'd nice to have the "escape hatch" to do unsupported things, though, too. The trick is getting everything to beh

Re: [ansible-project] Configuring Ansible to run play books through a bastion host on aws/ec2

p_Hosts> >>>> to use a proxy is via this kind of ssh construct: >>>> >>>> ssh -o "ForwardAgent=yes" -tt foo@1.2.3.4 ssh -tt bar@10.0.0.10 >>>> >>>> It accomplishes the same thing. Could that be passed somehow in >>>

Re: [ansible-project] Configuring Ansible to run play books through a bastion host on aws/ec2

ork). On Thursday, November 6, 2014 1:06:45 PM UTC-8, Tennis Smith wrote: > > > Damn. I just thought of something. > > How will "ansible -m ping " work? > > Hope I've overlooked something, but that could be a snag. > > -T > > On Monday, November 3,

[ansible-project] Re: Baremetal provisioning on Windows Hyper-V

It's honestly not something we get asked about much. There aren't really many technical hurdles to doing so beyond, "we just don't have the modules for it". If somebody wanted to write one, there's a good chance we'd accept it, but with all the other improvements needed in Windows-land over the

[ansible-project] Re: Windows authentication

7;ll update the documentation there on how to use NTLM once all the required upstream project updates are publicly released. Should be a matter of weeks, but can't give a more concrete date than that right now. -Matt Davis Principal Software Engineer, Ansible Core (Windows) On Monday

[ansible-project] Re: Async and expect module

You need to outdent async/poll args- those are task args, not module args (so they need to line up with name and "expect"). On Tuesday, April 12, 2016 at 7:09:15 AM UTC-7, David González Martínez wrote: > > I'm trying to use expect Ansible module to perform an interactive task in > a virtual ma

[ansible-project] Re: Issue with using raw module with double quoted parameters under Windows

I'm a little suspicious, since the error you're getting is "Access is Denied" not "The network name cannot be found" (which is what I'd expect if the path/quotes were being munged). That said, throwing the extra command interpreter in there really makes you have to thread the needle- you have t

[ansible-project] Re: Problems getting linux-controller for windows working

The traceback looks like you're using Ansible 1.9 (or older)- the docs you reference are for 2.0+ (though have 1.9-specific stuff called out throughout). I'd guess you need to set ansible_ssh_user/ansible_ssh_pass in your inventory (where you're probably using the 2.0 keys ansible_user and ansi

[ansible-project] Re: custom facts with non-root account

Yes, you just need to call the setup module yourself (instead of letting gather_facts call it for you) and pass fact_path to a location you have control over. eg: - hosts: myhosts gather_facts: no tasks: # calling setup manually will sti

[ansible-project] Re: Script runs but ansible fails?

Assuming it's normal that fdisk/your script returns non-zero, you can prevent Ansible from treating that as a failure with failed_when ... On Wednesday, April 13, 2016 at 12:03:48 PM UTC-7, richard k

[ansible-project] Re: user module update_password changing password to and unknown value

Depending on what you're trying to set the password on, most things expect a crypted value. See user module docs and http://docs.ansible.com/ansible/faq.html#how-do-i-generate-crypted-passwords-for-the-user-module . On Tuesday, April 26, 2016 at 12:57:47 PM UTC-7, chrono wrote: > > Hello Everyon

Re: [ansible-project] Python not found in Ubuntu 16.04 server

It's coming, but there are a *lot* of hoops to jump to make Py3 work while continuing to support back to Python 2.4 in modules (eg, RHEL5 support). It sounds like RHEL will likely do the same for RHEL8, and others too... Life would be much easier if we could just say, Py2.6/2.7/3.4+, but we'd ha

[ansible-project] Re: Getting WinRM connection refused error randomly

It could be- I've heard reports that cloning the box *after* enabling wsman can cause issues if you don't reconfigure stuff (see https://github.com/ansible/ansible/pull/15275), though I've not experienced this issue myself. Regardless, it appears that the issue lies somewhere with the machine's

[ansible-project] Re: StartProcess doesn't work with raw

hmm: ansible win -i hosts -m raw -a "start-process powershell" seems to work fine for me (though not sure what purpose that would serve, since the process will get nuked when the winrm connection closes). What is it you're trying to accomplish? On Tuesday, May 3, 2016 at 9:17:20 AM UTC-7, ja

[ansible-project] Re: Windows - Ansible freezes when network connection disrupted

SSH seems to be very tolerant of momentary connection losses, so long as the connection isn't actually "refused". WinRM under the covers is a very different beast (HTTP-based, logical connection instead of a single fixed TCP connection). It might be possible to retry certain parts of the WinRM

[ansible-project] Re: Windows - Ansible freezes when network connection disrupted

Depending on what you're trying to do, doing it as a scheduled task/script might make sense in the interim (eg, see http://docs.ansible.com/ansible/win_scheduled_task_module.html) On Tuesday, May 3, 2016 at 11:09:12 AM UTC-7, Matt Davis wrote: > > SSH seems to be very tolerant o

[ansible-project] Re: Check mode for Windows modules

Yes, the Windows module API has supported check mode since 2.0. To express your module's support for check mode, pass $true as the second arg to Parse-Args (supports_check_mode). Modules that don't pass that will exit out with "skipped" from Parse-Args when check mode is requested. To see if yo

[ansible-project] Re: Restart network interfaces

Have a look at async/poll . This isn't what it was designed for, but it will likely solve your issue... You'll probably want to do a sleep 5 && in front of the ifdown/ifup just to make sure that the async daemonization has occurred and retur

[ansible-project] Help test WinRM updates for NTLM, kerb delegation

noticeably improved again with this release, though I haven't benchmarked it. Feel free to file issues at https://github.com/diyan/pywinrm/issues. Enjoy! Matt Davis Principal Software Engineer (Ansible Core Windows) Red Hat -- You received this message because you are subscr

[ansible-project] Re: Help test WinRM updates for NTLM, kerb delegation

er and exercise it a bit more if I knew I could back it out easily). > > Many thanks, > > Jon > > On Monday, May 9, 2016 at 11:33:33 PM UTC+1, Matt Davis wrote: >> >> A new pywinrm release that supports NTLM, kerberos delegation, and much >> improved performanc

[ansible-project] Re: win_dsc as an extras module?

Now that DSC5 has been (re)released, we'll be doing some exploratory work around how we want to officially support DSC in Ansible. Meantime, there's no technical reason trond's DSC module couldn't be shipped in extras, if it's useful to people (and if he wants to PR it). On Friday, May 13, 201

[ansible-project] Re: Running powershell script from ansible playbook

That all looks correct- I'm assuming your script has output that you're not seeing in stdout/stderr? What should it be doing? On Tuesday, May 17, 2016 at 7:57:06 AM UTC-7, skinnedknuckles wrote: > > Control node: > >- CentOS 7 >- Ansible 2.1 > > Remote node: > >- Windows 7 >-

[ansible-project] Re: Running powershell script from ansible playbook

WinRM runs in an isolated session- you won't generally be able to do things that display stuff to an interactive user. There are ways to hack around it, but it's not generally accepted and Microsoft makes it harder with each Windows release. On Tuesday, May 17, 2016 at 8:25:45 AM UTC-7, skinned

[ansible-project] Re: Running powershell script from ansible playbook

Yeah- it's displaying on a headless winstation, not a user-interactive one (by Windows/WinRM design). There are various hacks to get around it, but none of them are foolproof (you can't make assumptions about which session is interactive, or which user might see it in the case of multiple). Mic

[ansible-project] Re: Help test WinRM updates for NTLM, kerb delegation

Awesome, thanks for poking at it! Waiting for another requests-kerberos release to include a bugfix I made for long-running kerberos ops (should happen today or tomorrow), and Alexey's final code review on some Unicode issues I've been cleaning up. I'd expect sometime in the next week or so.

[ansible-project] Re: Property _ansible_selinux_special_fs in resource xADDomain is not a valid property

Yeah, looks like those modules aren't properly handling _ansible_X internal module args. On Wednesday, May 18, 2016 at 2:45:47 PM UTC-7, Phyo Shwe wrote: > > Turns out I was using the devel version of ansbile and that was causing > the error. Now I am on Ansible 2.0.2 and get a new error. > > TA

[ansible-project] Re: How to get facts about firewall type?

Doesn't work that way today, but that sounds like an awesome enhancement to the facts module... #lowhangingfruit On Wednesday, May 18, 2016 at 1:59:48 PM UTC-7, Андрей Круглов wrote: > > Hi, > > I have a lot of centos7 webservers with firewalld onboard and a lot of > centos7 webservers with ipt

[ansible-project] Re: Ansible Node -> Multiple Windows domains

The new pywinrm stuff I've been working on (0.2.0rc3) supports on-the-fly kerberos principal switching across N domains if you have valid tickets for them all on a system that defaults to collection-typed credential caching (I've only tested on OSX so far- not sure what the default ccache type i

[ansible-project] Re: Help test WinRM updates for NTLM, kerb delegation

>> pip install pywinrm[kerberos]==0.2rc4 -i >> https://testpypi.python.org/pypi --extra-index-url >> https://pypi.python.org/pypi >> >> Enjoying the speed boost, looking forward to pushing this out past my >> test box. >> >> Jon >> >> On W

[ansible-project] Re: Unusual WinRM connection issue

Hey Mike, Unfortunately pywinrm currently has *zero* logging/diagnostic capabilities (something I'd like to correct for troubleshooting stuff like this). Meantime... A couple of things to try: - Does it work with Basic auth and a local user on that same box? - Any chance you could run with Fidd

[ansible-project] Re: Unusual WinRM connection issue

on > ProductVersion : OS: 6.3.9600 SP: 0.0 Stack: 3.0 > > I will try the Fiddler method shortly and return the results. > > On Friday, May 27, 2016 at 7:48:53 PM UTC+2, Matt Davis wrote: >> >> Hey Mike, >> >> Unfortunately pywinrm currently has *zero* loggin

[ansible-project] Re: NEED HELP - connecting via winrm

The var definition in your inventory file is wrong- try: [Windows:vars] Also, if you're on 2.x you should probably use the new ansible_user/ansible_port/ansible_password vars. The old ansible_ssh_X versions will continue to work, but the new ones are much clearer. On Friday, June 3, 2016 at 7

[ansible-project] Re: Ansible Tower: error running Apache Ant.exe command

Tried the following hotfix? https://support.microsoft.com/en-us/kb/2842230 On Friday, June 3, 2016 at 7:58:50 AM UTC-7, JeffElep wrote: > > we are currently running Ansible Tower 2.1 > > target is Windows Server 2012 with SP2 \ running WinRM 3.0 > > in a playbook i have the following task > >

[ansible-project] Re: Ansible Tower: error running Apache Ant.exe command

012 Server :( > > cheers! > > On Friday, June 3, 2016 at 11:49:01 AM UTC-4, Matt Davis wrote: >> >> Tried the following hotfix? >> >> https://support.microsoft.com/en-us/kb/2842230 >> >> On Friday, June 3, 2016 at 7:58:50 AM UTC-7, JeffElep wrote: >

[ansible-project] Re: Playbook command on windows machine

Just get rid of the quotes and double-backslashes altogether and use standard YAML syntax (instead of Ansible key=value) to get some of the extra parsers out of the way: - name: Install Clamwin hosts: WindowsOS tasks: - name: Install ClamWin win_package: path: S:\ClamWin\

[ansible-project] Re: Playbook command on windows machine

Drive mapping will also most likely not work- for now, you'll need to use kerberos delegation or use the user/pass args to win_package and direct UNC path. On Monday, June 6, 2016 at 12:03:15 PM UTC-7, Matt Davis wrote: > > Just get rid of the quotes and double-backslashes altoget

[ansible-project] Re: Ansible managing Windows hosts with non admin user

The default WinRM ACL (at least on 2012R2- only thing I have booted to look at right now) only includes the local Administrators group (and INTERACTIVE, but not in a usable way). If you do a winrm configSDDL default on the host in question, you can add any user you want to that ACL (they only

Re: [ansible-project] Python for AIX

). We're playing with different options there for things like OSX as well, so if you've got any ideas, we're all ears. Matt Davis Ansible Core Engineering On Monday, June 6, 2016 at 2:09:23 PM UTC-7, Adam Morris wrote: > > The old Linux Toolbox version didn't work (it was

[ansible-project] Re: ansible ping failing intermittently "send fds failed\r\nlost connection\n"

;t. *Please* don't run the Ansible controller for anything real on Windows. *Please*. :) Love, Matt Davis Ansible Core Engineering (The Windows Guy) On Monday, June 6, 2016 at 7:37:11 PM UTC-7, Subhankar Sengupta wrote: > > Robert, > Can you switch to paramiko? AFAIK Ansible is suppo

Re: [ansible-project] Python for AIX

Yep, that was the best deal we found too- a little more reasonable than some, but for the volume we'd likely pump through it, one probably wouldn't cut it unless they allow nested virt of some sort (is that even a thing on AIX?). We'd want to be running full integration tests on every pull reque

Re: [ansible-project] Python for AIX

Hmm, I did just trip over https://www-356.ibm.com/partnerworld/wps/servlet/ContentHandler/stg_com_sys_power-development-platform ... On Monday, June 6, 2016 at 10:36:07 PM UTC-7, Matt Davis wrote: > > Yep, that was the best deal we found too- a little more reasonable than > some, bu

Re: [ansible-project] Re: Unusual WinRM connection issue

t;>>> >>>> I'm beginning to think this might be as a result of the problem servers >>>> being templated in VMWare perhaps? >>>> >>>> On Wednesday, June 1, 2016 at 7:41:50 PM UTC+2, Matt Davis wrote: >>>>> >>>>>

[ansible-project] Re: 'No Kerberos credentials available' when executing tasks from a server that is not joined to AD.

Depending on what you're doing, NTLM might be a better fit for you (install pywinrm>=0.2.0, set ansible_winrm_transport=ntlm and specify ansible_user/ansible_password). Automatic ticket management in pywinrm/our connection plugin is definitely on my list of "things I wish we could do", but it'

[ansible-project] Re: win_iis_webbinding : binding net.tcp and net.pipe

The iis_webbinding module doesn't currently have support for setting the bindingInformation property, which is where that needs to go for net.tcp (not ip). Looks like it'd be trivial to add, so if you want to submit a pull request, CC me on it (@nitzmahone) and I'll take a look! On Wednesday, J

[ansible-project] Re: script module fails

"free_form" is a horrible doc artifact that I'm still unsure why it exists... It just means that the script/args go after the action name, eg: - name: Configure data disk storage pool script: "configure_disks.ps1" creates: "C:/scripts/storagepool_configured.txt" The script under the role's

[ansible-project] Re: script module fails

Sorry, also forgot the args wrapper: - name: Configure data disk storage pool script: configure_disks.ps1 args: creates: C:\scripts\storagepool_configured.txt On Monday, June 13, 2016 at 10:30:44 AM UTC-7, Matt Davis wrote: > > "free_form" is a horrible doc artifact that

[ansible-project] Re: win_package uninstall example?

Ansible's a pretty thin wrapper around the platform capabilities- installing/uninstalling software on Windows is tricky, as every installer is a special snowflake, and many assume that there's a user sitting there to answer dialogs. That said, I know Sliverlight fully supports unattended instal

[ansible-project] Re: Windows - Ansible freezes when network connection disrupted

em to work, > http://pastebin.com/PS82PnBF is what I came up with but even this freezes > after installation. > > Appreciate any help/advice. > > > On Tuesday, 3 May 2016 11:10:37 UTC-7, Matt Davis wrote: >> >> Depending on what you're trying to do

[ansible-project] Re: Run a script with a space in its path?

I'm assuming you're the one who asked this on StackOverflow recently... Please file a bug on this under the ansible/ansible project- it looks like it's not a Windows-specific issue, given where it's failing. No guarantees we'll be able to thread the needle correctly for separating the script na

[ansible-project] Re: winrm and https

This. Python is unfortunately not very verbose about *why* cert validation fails, but you absolutely need to be using ansible_host or the inventory hostname that matches the CN or a SAN in the certificate you created. Python 2.x does *not* support IP CN/SANs yet (3.x does, but IIRC it hasn't be

[ansible-project] Re: Domain Authentication

, Mark Matthews wrote: >> >> Hi >> >> >> >> I am trying to authenticated to server using domain credentials. >> >> >> >> I watch the following video with Matt Davis, >> https://www.ansible.com/webinars-training/ask-an-expert-ansible-a

[ansible-project] Re: Windows - Ansible freezes when network connection disrupted

gt; It basically freezes after the install driver command is sent to the > windows host (using pnputil). > > Thank you! > > On Monday, 20 June 2016 09:55:58 UTC-7, Matt Davis wrote: >> >> The module subsystem alone is not (and pretty much cannot safely) be made >> resil

[ansible-project] Re: Windows - Ansible freezes when network connection disrupted

nect> (it is highly > under developed as of now), you might have to modify certain things to make > it work if you want to reproduce in your own environment. > > Thanks for the time you've taken in helping me figure this out! > > On Monday, 27 June 2016 13:15:29 UTC-7

[ansible-project] Re: Windows - Ansible freezes when network connection disrupted

this today :) > I did it using scheduled job as you had mentioned, basically deferring the > install action on the host to a later time so I don't lose the connection. > > Fun times! > > On Monday, 27 June 2016 17:57:41 UTC-7, Matt Davis wrote: >> >> The closest t

[ansible-project] Re: Using backslash in Windows path

Assuming you're already using kerberos for domain auth, just make sure you have pywinrm >= 0.2.0, then add: ansible_winrm_kerberos_delegation=yes to your inventory. This will cause the TGT to be included in the kerberos negotiation instead of just the service ticket, so that downstream services

[ansible-project] Re: SSLError: [SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed

You need to be using at least Ansible 1.9.4 (preferably 2.1) and pywinrm 0.1.1 (preferably 0.2.0) to pass the certificate validation disable to pywinrm. 1.9.2 will be *very* slow and suboptimal for Windows work in many ways. On Wednesday, June 29, 2016 at 11:19:21 AM UTC-7, Hugo Enrique Hernánd

[ansible-project] Re: SSLError: [SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed

; File "/usr/lib/python2.7/site-packages/requests/adapters.py", line 477, > in send > raise SSLError(e, request=request) > SSLError: [SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed > (_ssl.c:765) > > I follow all requeriments > > any suggestion?? >

[ansible-project] Re: How to use new Azure modules

Have you read and followed http://docs.ansible.com/ansible/guide_azure.html about creating the service principals in AD? On Thursday, June 30, 2016 at 6:55:39 AM UTC-7, Tuomas-Matti Soikkeli wrote: > > I have the same problem. > > I have azure_rm_virtualmachine task with defaults and credentia

[ansible-project] Re: Version (and other) problems with Ansible Azure Modules

The Azure Python SDK is unfortunately still unreleased and a bit of a moving target, which is the cause of the issues you're seeing. Microsoft released a new RC on that stuff within a couple days of us shipping Ansible 2.1.0 that broke everything. We may end up retroactively labeling the new Az

[ansible-project] Re: Help test WinRM updates for NTLM, kerb delegation

just over 15 mins on my test box >>>> (against Server 2012 R2). >>>> I installed pywinrm 0.2.0 and the same test runs in just over 10 >>>> minutes. >>>> >>>> So well worth testing out now. >>>> >>>> Jon >

[ansible-project] Re: Error in win_share

That's the (somewhat cryptic) error message for "we don't know what that module is". win_share was added in 2.1, so you'd need to be running at least Ansible 2.1.0. On Tuesday, July 5, 2016 at 8:20:47 AM UTC-7, J Hawkesworth wrote: > > Not sure -name: is valid for an entire playbook > > Instead

[ansible-project] Re: Windows Task in a role for Linux hosts? How?

I'd second splitting it up a bit into separate roles/tasks/plays for the Win/non-Win for now parts. While it's *possible* to target Windows/non-Windows hosts in the same role, all the role tasks would have to be conditionally executed (eg, when: ansible_os_family == 'Windows' / != 'Windows' or

[ansible-project] Re: Some Ansible Windows winrm variables doesn't seems to be use

There was a late change to 2.1.0 that broke psuedo-connection vars (eg, ansible_winrm_X) defined in group_vars files, preventing them from propagating correctly into the worker process (where flat inventory files worked fine). It's been corrected for 2.1.1 (currently in release candidate). On

[ansible-project] Re: Version (and other) problems with Ansible Azure Modules

; > Thanks, > > Steven. > > On Friday, July 1, 2016 at 5:36:29 PM UTC-4, Matt Davis wrote: >> >> The Azure Python SDK is unfortunately still unreleased and a bit of a >> moving target, which is the cause of the issues you're seeing. Microsoft >> rele

[ansible-project] Re: Error Creating Azure Security Group

Yep, twas another shape change in the Python SDK- they flattened a bunch of SDK values somewhere in there (where you used to have to dot into a "value" member). Should be fixed in 2.1.1RC2 and devel by https://github.com/ansible/ansible-modules-core/commit/de9959b129d927bc3a7c8022da1c7d8474776

Re: [ansible-project] Re: Version (and other) problems with Ansible Azure Modules

b.zip/ansible/module_utils/azure_rm_common.py\", >>> >>> line 192, in __init__\n File >>> \"/tmp/ansible_nsnYjC/ansible_module_azure_rm_deployment.py\", line 449, in >>> exec_module\ndeployment = self.deploy_template()\n File >&g

[ansible-project] Re: launch executable on remote node

You have to do some extra semi-complex magic when launching the process to break out of the winrm "jail"- otherwise anything you start will be nuked when your winrm session ends (by WinRM design, not Ansible's). I'm building said magic into Ansible for 2.2 to support async tasks on Windows (amon

Re: [ansible-project] Re: Version (and other) problems with Ansible Azure Modules

:25 PM UTC-7, Steven Carter wrote: > > That worked! I really appreciate it! Should the other functions work at > this point or will that still take some time? > > Steven. > > On Thu, Jul 7, 2016 at 2:02 PM, Matt Davis wrote: > >> Yeah, looks like the azure_rm_deployment

[ansible-project] Re: Using win_regedit to harden Windows server ciphers

Yep, doesn't look like there's any documented way to get the Powershell registry provider to work right with this. Even if we could get it to work right with the creation, it'd still break on all the Test-Path and other calls. Only way to handle this "right" would be a complete rewrite of win_r

[ansible-project] Re: Creating ansible modules for windows

You can also place them in a directory named library/ next to your playbooks- this is usually the way I tell people to do it, so your modules can be versioned alongside your content. The .py doc file is not required anymore (it was at one point), but strongly encouraged so that ansible-doc wil

Re: [ansible-project] NTLM Delegation

I don't believe NTLM credential delegation is supported by WinRM (I've not been able to find anything about it), which means by definition it wouldn't be supported by Ansible either. That said, I've been experimenting with various mechanisms for become support on Windows (soft target for Ansibl

[ansible-project] Re: Using win_regedit to harden Windows server ciphers

+1 to this- IISCrypto is a great tool to make this easier, and bonus: it's available from chocolatey, thus easy to deal with from Ansible... On Monday, July 18, 2016 at 1:07:18 AM UTC-7, Mike Fennemore wrote: > > I'm assuming for the security hardening you would be disabling multiple > ciphers a

[ansible-project] Re: Location of custom powershell cmdlets in ansible

In an ansible install, under lib/ansible/module_utils/powershell.ps1 On Monday, July 25, 2016 at 1:09:02 PM UTC-7, Rakshatha Shetty wrote: > > Hi, > > Where are the custom powershell cmdlets present in ps1 script of windows > modules defined in anisble? > > For example:* Get-AnsibleParam* is powe

[ansible-project] Re: More fields being added to setup module for windows?

A number of items have been added for 2.2 to bring feature parity with *nix setup (see https://github.com/ansible/ansible-modules-core/blob/devel/windows/setup.ps1), but what kinds of things are you wanting to see that aren't there? On Monday, July 25, 2016 at 1:09:02 PM UTC-7, kumaras...@gmail

[ansible-project] Re: Windows playbooks causes cryptographic, windows remote management services to crash

I've heard one other report of this happening a few weeks ago (but was via Ansible support and I didn't know who the customer was- maybe it was also you?) The services in question share the winrm host process, so not surprising that they're the ones going down. pywinrm 0.2.0 could definitely

[ansible-project] Re: WinRM timeout for VMWare Tools Install

Ansible 2.2 is scheduled to ship with async support for Windows (I'm putting the finishing touches on it now), which would be the right solution to this if you're unable to otherwise defer the NIC bounce. -Matt On Friday, July 29, 2016 at 4:10:03 PM UTC-7, Matt Betts wrote: > > I've got a basi

[ansible-project] Re: Running powershell script with dependencies

Not directly- you'd first need to copy all the script deps to the remote side yourself, at which point you might as well just use raw (or the forthcoming win_script/win_command in 2.2). On Wednesday, August 3, 2016 at 10:52:02 AM UTC-7, Ross Jones wrote: > > Hi all, > > Is it possible to execute

[ansible-project] Re: Matt Davis on PowerScripting Podcast

at 12:06:17 AM UTC-7, Mike Fennemore wrote: > > So was listening through my podcasts on the way to work and stumbled on > this one > https://powershell.org/episode-314-powerscripting-podcast-matt-davis-from-red-hat-on-ansible/. > > Very cool session Matt, looking forward to fu

[ansible-project] Re: Variable (for Windows/Powershell) that contains a character which must by escaped?

Tried the stop-parsing symbol ( --% )? https://technet.microsoft.com/en-us/library/hh847892.aspx On Sunday, August 7, 2016 at 5:38:47 PM UTC-7, Matt Gagliardi wrote: > > I searched around but didn't see anything that appeared to apply to the > Windows/Powershell application I need advice on. I'

[ansible-project] Re: Starting a Background Java Process on Windows

You're partially right: it's not Ansible, but WinRM that's killing the process. WinRM runs everything under a Windows job object, and that job object gets terminated when the connection is closed (ie, when Ansible finishes that task), which causes all processes spawned under it to be terminated

[ansible-project] Re: Windows Playbook Fails Using win_user

Unless it's just Google Groups eating the formatting, it looks like your YAML indentation is hosed up (Ansible's failing on the control side, not on the Windows module). YAML is whitespace-sensitive, so it should look like: - name: Add a user hosts: all gather_facts: false tasks: - name:

[ansible-project] Re: Multiple passwords in group_vars/windows.yml for multiple windows hosts

You don't- set the passwords at the host_vars/host.yml level if they differ. On Thursday, August 18, 2016 at 9:41:38 AM UTC-7, Raghavendra Tandon wrote: > > How do I Implement multiple passwords in group_vars/windows.yml for > multiple windows hosts which i need to orchestrate using my RHEL contr

[ansible-project] Re: win_user module and GPO settings

We could probably short-circuit the credential validation on disable, but you'd have the same issue if you tried to re-enable that account. Please file a GitHub issue on win_user in https://github.com/ansible/ansible-modules-core/ with the details... On Thursday, August 18, 2016 at 9:41:27 AM

[ansible-project] Re: Action plugin's "self.runner.inventory" in 2.0

Heh, I bet I know what you're up to... ;) It's not exposed in the same way under 2.x anymore. There are still ways to root around in inventory from an action plugin under 2.x (eg, self._templar._available_variables), but the objects are effectively immutable, since 2.x action plugins run in a f

Re: [ansible-project] Re: Version (and other) problems with Ansible Azure Modules

self._serialize = Serializer(client_models) > TypeError: __init__() takes exactly 1 argument (2 given) > > I'm assuming this azure_rm.py just has a dependency on the azure sdk and > not my ansible install? As my ansible is not from stable-2.1. > > On Friday, 8 July

[ansible-project] Re: Configuring AWS EC2 instance after it's created through Ansible

You can use the returned data from cloudformation to call add_host , then start a new play that targets that host, or set up an EC2 dynamic inventory script that will pick up the host(s) you're creating and conditionally call meta: inventory

Re: [ansible-project] Re: Version (and other) problems with Ansible Azure Modules

wrote: > > The issue is not on the constructor line though it's at line 146 of > ComputeManagementClient which is the Serializer (inside the constructor) > > On Tuesday, 30 August 2016 01:58:12 UTC+1, Matt Davis wrote: >> >> It doesn't look like your Azure SDK i

[ansible-project] Re: win_update performance

Ansible isn't doing anything magic around Windows Updates (other than synchronous application)- we're just using the Windows Update client API, so it should take about the same amount of time via Ansible as it would to do it interactively. If you're doing something like booting a 2008R2 RTM ima

[ansible-project] Re: Baremetal provisioning on Windows Hyper-V

you supported provisioning vm on hyper v, > it would be very useful :) > > Thanks, > Lars > > Den tirsdag den 8. marts 2016 kl. 17.03.47 UTC+1 skrev Matt Davis: > >> It's honestly not something we get asked about much. There aren't really >> many technical

[ansible-project] Re: Ansible on Windows w/o administrator privileges possible?

Yes, it's absolutely possible. Usually the limiting factor on a default install is the WinRM listener ACL- you can see/alter this via: winrm configSDDL default and add the necessary users/groups (or add the existing Windows Remote Management group). On Wednesday, September 7, 2016 at 1:33:54 P

  1   2   >