How to add user and group without a password using Ansible?

ansible-playbook ansible-2.x
Levintovich picture Levintovich · Mar 29, 2016 · Viewed 11.5k times · Source

I need to add group and user without password (nologin user) using Ansible script.

I execute the following command:

$ansible-playbook deploy_nagios_client.yml -i hosts -e hosts=qa1-jetty -v

Below is main.yml

---

# Create Nagios User and Group 
  - name: Add group "nagios"
    group: name=nagios
    become: true

  - name: Add user "nagios"  
    user: name=nagios groups=nagios password="" shell=/bin/bash append=yes comment="Nagios nologin User" state=present
    become: true

Result

Answer

user2599522 picture user2599522 · Apr 2, 2016

If you want to create a nologin user, you should specify that to the shell argument like this:

  - name: Add user "nagios"  
    user:
      name: nagios
      groups: nagios
      shell: /sbin/nologin
      append: yes
      comment: "Nagios nologin User"
      state: present
    become: true

Related questions

Run an Ansible task only when the variable contains a specific string

I have multiple tasks depend from the value of variable1. I want to check if the value is in {{variable1}} but i got an error: - name: do something when the value in variable1 command: <command> when: "'value' …

Read More
Using True False with Ansible When Clause

I'm running into the silliest issue. I cannot figure out how to test for boolean in an Ansible 2.2 task file. In vars/main.yml, I have: destroy: false In the playbook, I have: roles: - {'role': 'vmdeploy','destroy': true} In …

Read More
Difference between become and become_user in Ansible

Recently I started digging into Ansible and writing my own playbooks. However, I have a troubles with understanding difference between become and become_user. As I understand it become_user is something similar to su <username>, and become …

Read More