Ganome/DOT-Files
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
DOT-Files/Gentoo/gentooamd/home/user/.tldrc/tldr/pages/common/ansible-vault.md

1.3 KiB
Raw Blame History

ansible-vault

Encrypt and decrypt values, data structures, and files within Ansible projects. More information: https://docs.ansible.com/projects/ansible/latest/vault_guide/index.html.

  • Create a new encrypted vault file with a prompt for a password:

ansible-vault create {{path/to/vault_file}}

  • Edit, view or re-key (re-encrypt) an existing encrypted vault file with a prompt for the password:

ansible-vault {{edit|view|rekey}} {{path/to/vault_file}}

  • Create a new encrypted vault file using a password file to encrypt it:

ansible-vault create --vault-password-file {{path/to/password_file}} {{path/to/vault_file}}

  • Encrypt an existing plaintext file in-place using a password file:

ansible-vault encrypt --vault-password-file {{path/to/password_file}} {{path/to/file}}

  • Encrypt a string using Ansible's encrypted string format, displaying interactive prompts:

ansible-vault encrypt_string

  • View an encrypted vault file by using a password file to decrypt:

ansible-vault view --vault-password-file {{path/to/password_file}} {{path/to/vault_file}}

  • Re-key (re-encrypt) an already encrypted vault file with a new password file:

ansible-vault rekey --vault-password-file {{path/to/old_password_file}} --new-vault-password-file {{path/to/new_password_file}} {{path/to/vault_file}}