Updated README.md for current vault
Signed-off-by: TuDatTr <tuan-dat.tran@tudattr.dev>pull/1/head
parent
8214fda2cb
commit
4fe1196c8e
15
README.md
15
README.md
|
@ -2,8 +2,14 @@
|
|||
## Vault
|
||||
- Create vault with: `ansible-vault create secrets.yml`
|
||||
- Create entry in vault with: `ansible-vault edit secrets.yml`
|
||||
- Add entry: `pi_tudattr_password: YOUR_USERS_PASSWORD`
|
||||
- Add entry: `aya01_tudattr_password: YOUR_USERS_PASSWORD`
|
||||
- Add following entries:
|
||||
- `vault_pi_tudattr_password: <YOURPASSWORD>`
|
||||
- `vault_aya01_tudattr_password: <YOURPASSWORD>`
|
||||
- `vault_pihole_password: <YOURPASSWORD>`
|
||||
- `vault_mysql_root_password: <YOURPASSWORD>`
|
||||
- `vault_mysql_user_password: <YOURPASSWORD>`
|
||||
- `vault_ddns_tudattrdev_password: <YOURPASSWORD>`
|
||||
- `vault_ddns_borgland_password: <YOURPASSWORD>`
|
||||
|
||||
## Server
|
||||
- Install Debian (debian-11.5.0-amd64-netinst.iso) on remote system
|
||||
|
@ -48,7 +54,6 @@ Host pi
|
|||
- enable ssh on pi
|
||||
- copy public key to pi
|
||||
- change user password of user on pi
|
||||
- execute `ansible-galaxy install geerlingguy.docker`
|
||||
- execute `ansible-playbook -i production --ask-vault-pass --extra-vars '@secrets.yml' pi.yml`
|
||||
|
||||
## Mikrotik
|
||||
|
@ -63,3 +68,7 @@ Host mikrotik
|
|||
IdentityFile /mnt/veracrypt1/mikrotik_rsa
|
||||
```
|
||||
|
||||
## Todo
|
||||
- Role to setup backup
|
||||
- Role to load customization/configurations from backup to servers
|
||||
- aya01 fstab
|
||||
|
|
|
@ -16,6 +16,7 @@ common_packages:
|
|||
- tmux
|
||||
- smartmontools
|
||||
- curl
|
||||
- tree
|
||||
|
||||
#
|
||||
# Docker
|
||||
|
|
|
@ -1,3 +1,5 @@
|
|||
---
|
||||
- include_tasks: time.yml
|
||||
- include_tasks: essential.yml
|
||||
- include_task: aya01_fstab.yml
|
||||
when: ansible_hostname == "aya01"
|
||||
|
|
Loading…
Reference in New Issue