adding credentials

ansible/ansible.cfg

@@ -8,4 +8,5 @@ interpreter_python = auto_silent
 collections_paths = ./collections
 collections_path = ./collections
 roles_path = ./roles
-vault_password_file = ./vault_password
+vault_password_file = ./vault_password
+playbook_dir = ./playbooks/

ansible/inventory/host_vars/kube01/kube01.yaml

@@ -0,0 +1,2 @@
+---
+ansible_host: kube01.balsillie.net

ansible/inventory/host_vars/kube02/kube02.yaml

@@ -0,0 +1,2 @@
+---
+ansible_host: kube02.balsillie.net

ansible/inventory/host_vars/kube03/kube03.yaml

@@ -0,0 +1,2 @@
+---
+ansible_host: kube03.balsillie.net

ansible/inventory/host_vars/server/server.yaml

@@ -2,6 +2,7 @@
 
 # connection
 
+ansible_host: server.balsillie.net
 ansible_user: michael
 ansible_become_user: michael
 ansible_os_family: Arch

ansible/inventory/inventory.yaml

@@ -4,81 +4,56 @@ all:
       children:
         hypervisors:
           hosts:
-            - server
+            server:
-            - lab
+            lab:
-            - hv00
+            hv00:
         vms:
           children:
             nodes:
               hosts:
-                - node1
+                node1:
-                - node2
+                node2:
-                - node3
+                node3:
           hosts:
-            - router
+            router:
     hetzner:
       hosts:
-        - hv00
+        hv00:
-        - firewall00
+        fw00:
     k8s:
       children:
         k8s_control:
           hosts:
-            - kube00
+            kube00:
-            - kube01
+            kube01:
-            - kube02
+            kube02:
         k8s_taint:
           hosts:
-            - kube00
+            kube00:
-            - kube01
+            kube01:
-            - kube02
+            kube02:
         k8s_worker:
           hosts:
-            - kube00
+            kube00:
-            - kube01
+            kube01:
-            - kube02        
+            kube02:       
     firewalls:
       children:
         fortigate:
           hosts:
-            - fortigate00
+            fortigate00:
         opnsense:
           hosts:
-            - firewall00
+            fw00:
     switches:
       hosts:
-        - switch00
+        sw00:
     workstations:
       children:
         arch:
           hosts:
-            - lat5420
+            lat5420:
-            - sff
+            sff:
         windows:
           hosts:
-            - bridie
+            bridie:
-  hosts:
-    server:
-      ansible_host: server.balsillie.net
-    lab:
-      ansible_host: lab.balsillie.net
-    hv00:
-      ansible_host: server.balsillie.net
-    bridie:
-      ansible_host: bridie.balsillie.net
-    lat5420:
-      ansible_host: lat5420.balsillie.net
-    sff:
-      ansible_host: sff.balsillie.net
-    node1:
-      ansible_host: node1.balsillie.net
-    node2:
-      ansible_host: node2.balsillie.net
-    node3:
-      ansible_host: node3.balsillie.net
-    router:
-      ansible_host: router.balsillie.net
-    firewall00:
-      ansible_host: firewall.balsillie.net
-    fortigate00:
-      ansible_host: fortigate.balsillie.net

notes/ansible_cheat_sheet.txt

@@ -0,0 +1,13 @@
+cd ./ansible
+
+# Ansible vault password is provided automatically by vault_password file
+# Path to vault_password file is provided automatically by ansible.cfg
+# Hence execution must be done from the context of the folder that holds ansible.cfg
+
+
+ansible-vault create [path-to-vault-file]
+ansibe-vault edit [path-to-vault-file]
+
+
+
+ansible-playbook [path-to-playbook] #include file extension