0.7.0
This commit is contained in:
parent
7e4f85b0fd
commit
dd9a9113ba
GPG key ID:
03906B4110AAD3B8
6 changed files with 388 additions and 128 deletions
|
|
@ -40,12 +40,12 @@ description: "Security posture and safe workflows for Enroll outputs."
|
|||
<button class="btn btn-sm btn-outline-secondary copy-btn" data-copy-target="#sec-sops"><i class="bi bi-clipboard"></i> Copy</button>
|
||||
<pre class="mb-0"><code id="sec-sops"><span class="prompt">$</span> enroll harvest --out /tmp/enroll-harvest --dangerous --sops <FINGERPRINT>
|
||||
<span class="prompt">$</span> enroll manifest --harvest /tmp/enroll-harvest/harvest.tar.gz.sops \
|
||||
--out /tmp/enroll-ansible --sops <FINGERPRINT></code></pre>
|
||||
--target ansible --out /tmp/enroll-ansible --sops <FINGERPRINT></code></pre>
|
||||
</div>
|
||||
|
||||
<div class="alert alert-secondary mt-3 mb-0">
|
||||
<div class="fw-semibold">Important</div>
|
||||
<div class="small mb-0">In manifest <code>--sops</code> mode, you'll need to decrypt and extract the bundle before running <code>ansible-playbook</code>.</div>
|
||||
<div class="small mb-0">In manifest <code>--sops</code> mode, you'll need to decrypt and extract the bundle before running <code>ansible-playbook</code>, <code>puppet apply</code>, or <code>salt-call</code>.</div>
|
||||
</div>
|
||||
</div>
|
||||
</div>
|
||||
|
|
@ -92,7 +92,7 @@ description: "Security posture and safe workflows for Enroll outputs."
|
|||
<ul class="small mb-0">
|
||||
<li>Accidentally copying obvious secrets in default mode</li>
|
||||
<li>Harvesting huge/unbounded file sets by mistake</li>
|
||||
<li>One host's difference causing problems for other hosts in terms of Ansible task steps (multi-site mode)</li>
|
||||
<li>One host's difference causing problems for other hosts by keeping multi-site data in inventory, Hiera, or pillar</li>
|
||||
</ul>
|
||||
</div>
|
||||
<div class="col-md-6">
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue