Adding documentation for ask_vault_pass usage in ansible.cfg
This commit is contained in:
parent
d35b956900
commit
7bdaac7f63
2 changed files with 10 additions and 1 deletions
|
@ -115,6 +115,15 @@ sudoing. The default behavior is also no::
|
||||||
|
|
||||||
Users on platforms where sudo passwords are enabled should consider changing this setting.
|
Users on platforms where sudo passwords are enabled should consider changing this setting.
|
||||||
|
|
||||||
|
.. _ask_vault_pass:
|
||||||
|
|
||||||
|
ask_vault_pass
|
||||||
|
==============
|
||||||
|
|
||||||
|
This controls whether an Ansible playbook should prompt for the vault password by default. The default behavior is no::
|
||||||
|
|
||||||
|
ask_vault_pass=True
|
||||||
|
|
||||||
.. _bin_ansible_callbacks:
|
.. _bin_ansible_callbacks:
|
||||||
|
|
||||||
bin_ansible_callbacks
|
bin_ansible_callbacks
|
||||||
|
|
|
@ -5,7 +5,7 @@ Vault
|
||||||
|
|
||||||
New in Ansible 1.5, "Vault" is a feature of ansible that allows keeping sensitive data such as passwords or keys in encrypted files, rather than as plaintext in your playbooks or roles. These vault files can then be distributed or placed in source control.
|
New in Ansible 1.5, "Vault" is a feature of ansible that allows keeping sensitive data such as passwords or keys in encrypted files, rather than as plaintext in your playbooks or roles. These vault files can then be distributed or placed in source control.
|
||||||
|
|
||||||
To enable this feature, a command line tool, `ansible-vault` is used to edit files, and a command line flag `--ask-vault-pass` or `--vault-password-file` is used. Alternately, you may specify the location of a password file in your ansible.cfg file. This option requires no command line flag usage.
|
To enable this feature, a command line tool, `ansible-vault` is used to edit files, and a command line flag `--ask-vault-pass` or `--vault-password-file` is used. Alternately, you may specify the location of a password file or command Ansible to always prompt for the password in your ansible.cfg file. These options require no command line flag usage.
|
||||||
|
|
||||||
.. _what_can_be_encrypted_with_vault:
|
.. _what_can_be_encrypted_with_vault:
|
||||||
|
|
||||||
|
|
Loading…
Reference in a new issue