become
为另一个用户,不同于登录的用户,比如-u
或者ansible_ssh_user
,而是类似于sudo
,su
Directives
参数 | 描述 |
---|---|
become | set to yes to activate privilege escalation. |
become_user | |
become_method | |
become_flags |
连接参数
参数 | 描述 |
---|---|
ansible_become | |
ansible_become_method | |
ansible_become_user | |
ansible_become_password |
例子:
webserver ansible_user=manager ansible_become=yes
命令行参数
参数 | 描述 |
---|---|
–ask-become-pass, -K | 询问sudo权限 |
–become, -b | 使用become执行文件 |
–become-method=BECOME_METHOD | (default=sudo) |
–become-user=BECOME_USER | (default=root) |
如果需要sudo输入密码则:
可以通过配置sudoers
文件来跳过此步
# User privilege specification
root ALL=(ALL:ALL) ALL
# Members of the admin group may gain root privileges
%admin ALL=(ALL) ALL
# Allow members of group sudo to execute any command
%sudo ALL=(ALL:ALL) ALL
yourname ALL=(ALL) NOPASSWD: ALL
# See sudoers(5) for more information on "#include" directives:
参考:
https://docs.ansible.com/ansible/latest/user_guide/become.html