====== Ansible ======
===== Summary =====
Ansible is used to automate configuration of many lab services.  Since the list is ever-growing, see https://github.com/ceph/ceph-cm-ansible for details.

The [[https://github.com/ceph/ceph-sepia-secrets|secrets repo]] is a private repo containing vars for things we want to keep secret (duh).

Most information one would need is in the READMEs of [[https://github.com/ceph/ceph-cm-ansible/blob/master/README.rst|ceph-cm-ansible]] and [[https://github.com/ceph/ceph-sepia-secrets/blob/master/README.rst|ceph-sepia-secrets]].  Go there for more details.

===== Common tasks =====
==== Setting up a brand new infra host ====
To configure sudoers and users on a new infra host installation,
  - Set a password for the root or ubuntu user during install
  - Add to the **[production]** group in ceph-sepia-secrets
  - Run <code>
ansible-playbook -k -K --extra-vars '{ansible_ssh_user: root|ubuntu}' --ssh-extra-args="-o PubkeyAuthentication=no -o PasswordAuthentication=yes" ansible_managed.yml --limit="$NEWHOST.front.sepia.ceph.com"

#Enter password when prompted

ansible-playbook -b users.yml --limit="$NEWHOST.front.sepia.ceph.com"
</code>