chawley/MarkdownNotes
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

create/update 'Ansible vault encrypt-decrypt.md' file

Browse Source
This commit is contained in:
anonymous
2023-04-25 21:36:03 -04:00
parent f8fc8b413a
commit 51ceb9de32
1 changed files with 20 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

20
Ansible vault encrypt-decrypt.md Normal file
View File

@@ -0,0 +1,20 @@
# Ansible vault encrypt/decrypt
## Encrypt
Echo passwords through `ansible-vault` into a file. Provide encryption password when prompted (can be different for each password)
```shell
printf "%s" <password1> | ansible-vault encrypt_string --stdin-name=<password-name1> > <password-file>.var.yml
printf "%s" <password2> | ansible-vault encrypt_string --stdin-name=<password-name2> >> <password-file>.var.yml
...
```
## Decrypt
Retrieve a single decrytped password from password file. Provide encryption password when prompted.
```shell
ansible localhost -e '@<password-file>.var.yml' --ask-vault-pass -m debug -a 'var=<password-name>'
```
Tags:
howto