centos8 安装 ansible
# 安装epel扩展源
yum install epel -release
#或者用dnf
dnf install https://dl.fedoraproject.org/pub/epel/epel-release-latest-8.noarch.rpm -y
# dnf安装ansible
dnf install ansible
#更新ansible
yum upgrade ansible
#查看ansible文件
rpm -qa |grep ansible
rpm -ql ansible |more
修改主机清单
vi /etc/ansible/hosts
改成如下所示:
[webservers]
192.168.40.128
192.168.40.129
[dbservers]
db01.intranet.mydomain.net
db02.intranet.mydomain.net
10.25.1.56
10.25.1.57
使用ansible与被管理机通讯
ansible webservers -m ping -uroot -k
报错:
192.168.40.129 | FAILED! => { "msg": "Using a SSH password instead of a key is not possible because Host Key checking is enabled and sshpass does not support this. Please add this host's fingerprint to your known_hosts file to manage this host." }
192.168.40.128 | SUCCESS => { "ansible_facts": { "discovered_interpreter_python": "/usr/libexec/platform-python" }, "changed": false, "ping": "pong" }
一个成功,一个失败,是因为192.168.40.129这台没有用 ssh 192.168.40.129 连接过
或者,修改ansible.cfg
vim /etc/ansible/ansible.cfg
#host_key_checking = False //去掉#
[webservers]
192.168.40.128 ansible_ssh_user=root ansible_ssh_pass=123456
192.168.40.129 ansible_ssh_user=root ansible_ssh_pass=123456
ansible webservers -m ping
192.168.40.129 | UNREACHABLE! => {
"changed": false,
"msg": "Invalid/incorrect password: Permission denied, please try again.",
"unreachable": true
}
192.168.40.128 | UNREACHABLE! => {
"changed": false,
"msg": "Invalid/incorrect password: Permission denied, please try again.",
"unreachable": true
}
vi /etc/ssh/sshd_config
# Authentication:
LoginGraceTime 120
PermitRootLogin yes
StrictModes yes