For questions about Ansible Vault - an Ansible feature that allows keeping sensitive data in encrypted files rather than in plain text in various configuration files.
Questions tagged [ansible-vault]
11 questions
10
votes
3 answers
Why could the encrypted Ansible files not be decrypted although the vault password file has been set?
Follow-up to this Q&A.
According to this and this documentation it should be possible to define a default vault password file by specifying vault_password_file = ~/.vault_pass.txt in one of the following files:
* ANSIBLE_CONFIG (an environment…
030
- 13,235
- 16
- 74
- 173
8
votes
2 answers
What are best practices of structuring encrypting variables since Ansible 2.3.0?
This document indicates that since Ansible 2.3 it should be possible to encrypt certain vars using a !vault | prefix instead of putting a variable and keys in a vault file and encrypt it completely.
notsecret: myvalue
mysecret: !vault |
…
030
- 13,235
- 16
- 74
- 173