Ansible Privilege Escalation: Difference between revisions

From NovaOrdis Knowledge Base
Jump to navigation Jump to search
 
(4 intermediate revisions by the same user not shown)
Line 4: Line 4:
=Internal=
=Internal=
* [[Ansible_Concepts#Privilege_Escalation|Ansible Concepts]]
* [[Ansible_Concepts#Privilege_Escalation|Ansible Concepts]]
=TODO=
<font color=darkgray>
Process and integrate:
* https://docs.ansible.com/ansible/latest/user_guide/become.html
* https://docs.ansible.com/ansible/latest/plugins/become.html#become-plugins
</font>


=Overview=
=Overview=
To ask for privilege escalation password, use:
To ask for privilege escalation password, use:
<syntaxhighlight lang='bash'>
<syntaxhighlight lang='bash'>
ansible-playbook --ask-become-pass
ansible-playbook --ask-become-pass
</syntaxhighlight>
</syntaxhighlight>
=Task-Level Privilege Escalation=
Privilege escalation on a task basis is controlled with the following privilege escalation task configuration attributes:
* <tt>[[Ansible_Concepts#become|become]]</tt>
* <tt>[[Ansible_Concepts#become_exe|become_exe]]</tt>
* <tt>[[Ansible_Concepts#become_flags|become_flags]]</tt>
* <tt>[[Ansible_Concepts#become_method|become_method]]</tt>
* <tt>[[Ansible_Concepts#become_user|become_user]]</tt>
=Become Plugins=
=Become Plugins=
{{External|https://docs.ansible.com/ansible/latest/plugins/become.html#become-plugins}}
{{External|https://docs.ansible.com/ansible/latest/plugins/become.html#become-plugins}}

Latest revision as of 04:30, 13 April 2021

External

Internal

TODO

Process and integrate:

Overview

To ask for privilege escalation password, use:

ansible-playbook --ask-become-pass

Task-Level Privilege Escalation

Privilege escalation on a task basis is controlled with the following privilege escalation task configuration attributes:

Become Plugins

https://docs.ansible.com/ansible/latest/plugins/become.html#become-plugins