Différences
Ci-dessous, les différences entre deux révisions de la page.
| Prochaine révision | Révision précédente |
| tech:notes_ansible-vault [2025/03/24 15:06] – créée - modification externe 127.0.0.1 | tech:notes_ansible-vault [2025/10/27 19:14] (Version actuelle) – Jean-Baptiste |
|---|
| |
| <code bash> | <code bash> |
| cat /dev/urandom |tr -dc A-Za-z0-9 |head -c32 > ~/.ansible/.vault_pass | cat /dev/urandom | tr -dc A-Za-z0-9 | head -c32 > ~/.ansible/.vault_pass |
| chmod 600 ~/.ansible/.vault_pass | chmod 600 ~/.ansible/.vault_pass |
| </code> | </code> |
| |
| <code ini ~/.ansible.cfg> | ''~/.ansible.cfg'' |
| | <code ini> |
| [defaults] | [defaults] |
| |
| <code bash> | <code bash> |
| mv ~/.ansible/.vault_pass ~/.ansible/.vault_pass.old | mv ~/.ansible/.vault_pass ~/.ansible/.vault_pass.old |
| cat /dev/urandom |tr -dc A-Za-z0-9 |head -c32 > ~/.ansible/.vault_pass | cat /dev/urandom | tr -dc A-Za-z0-9 | head -c32 > ~/.ansible/.vault_pass |
| chmod 600 ~/.ansible/.vault_pass* | chmod 600 ~/.ansible/.vault_pass* |
| ansible-vault rekey --vault-password-file=~/.ansible/.vault_pass.old --new-vault-password-file=~/.ansible/.vault_pass $(find . -type f -name "*.mdp.yml") | ansible-vault rekey --vault-password-file=~/.ansible/.vault_pass.old --new-vault-password-file=~/.ansible/.vault_pass $(find . -type f -name "*.mdp.yml") |
| fatal: [remote]: FAILED! => {"msg": "Unexpected templating type error occurred on ({{ mysecret | password_hash('sha512') }}): secret must be unicode or bytes, not ansible.parsing.yaml.objects.AnsibleVaultEncryptedUnicode"} | fatal: [remote]: FAILED! => {"msg": "Unexpected templating type error occurred on ({{ mysecret | password_hash('sha512') }}): secret must be unicode or bytes, not ansible.parsing.yaml.objects.AnsibleVaultEncryptedUnicode"} |
| </code> | </code> |
| | |
| |
| ==== Solution | ==== Solution |
