Difficulty: Beginner
Estimated Time: 10 minutes

In this tutorial, we will show you how to secure Ansible using Conjur to protect SSH secrets

We will need to manage two servers via SSH by Ansible. Typically that'll involve:

  1. Create SSH service accounts on the managed servers
  2. Install Ansible
  3. Prepare an inventory file to specify the connection details of the managed servers
  4. Prepare a playbook to specifiy the tasks

Let's get started!

Wonderful! You've learned how to secure Ansible using Conjur to protect SSH secrets

Using Conjur to secure SSH secrets for Ansible

Step 1 of 12

SSH Accounts

Ansible can manage servers via SSH. First we need to create SSH accounts on our managed servers

Local Server

Let's create an account on host 1

useradd -m -d /tmp service01
passwd service01

Enter new UNIX password: W/4m=cS6QSZSc*nd

Retype new UNIX password: W/4m=cS6QSZSc*nd

Remote Server

Let's create a service account on host 2

useradd -m -d /tmp service02
passwd service02

Enter new UNIX password: 5;LF+J4Rfqds:DZ8

Retype new UNIX password: 5;LF+J4Rfqds:DZ8

Terminal Host 2