直接上playbook是一种礼貌:
---
- hosts: nodes
vars:
user: test
password: '$6$S7dJCf6UNTugqtm/$dhFkVuiaV.TIikLj.41TGKUwtQ0roq2B9GkxiNTuEt4kgfyTpRQF6gNilJ1DGapl71.AGpOMVFQN0/O5yfJb40'
remote_user: root
tasks:
- name: Add user {
{ user }}
user: name={
{user}} comment="ceph user" password={
{ password }}
- name: Config /etc/sudoers
lineinfile: dest=/etc/sudoers state=present line='{
{item}}' validate='visudo -cf %s'
with_items:
- "{
{ user}} ALL=(ALL) NOPASSWD: ALL"
- "Defaults: {
{user}} !requiretty"
此playbook将添加一个具有sudo权限的 test 用户 密码为password
更改用户只用更改vars:中的user 即可
生成密码:(网上的方法)
#pip install passlib
python -c "from passlib.hash import sha512_crypt; import getpass; print sha512_crypt.encrypt(getpass.getpass())"