Have you read and followed http://docs.ansible.com/ansible/guide_azure.html
about
creating the service principals in AD?
On Thursday, June 30, 2016 at 6:55:39 AM UTC-7, Tuomas-Matti Soikkeli wrote:
>
> I have the same problem.
>
> I have azure_rm_virtualmachine task with defaults and credentials
> configured in ~/.azure/credentials. I can access the resource manager with
> azure cli and via portal.azure.com
>
> -vvvv output:
>
> TASK [Create VM with defaults]
> *************************************************
> task path:
> /Users/tsoikkel/dev/mtg-rate-estimate-ui/ansible/rate-estimate-ui.yml:4
> Using module file
> /Users/tsoikkel/.bin/ansible/lib/ansible/modules/core/cloud/azure/azure_rm_virtualmachine.py
> <127.0.0.1> ESTABLISH LOCAL CONNECTION FOR USER: tsoikkel
> <127.0.0.1> EXEC /bin/sh -c '( umask 77 && mkdir -p "` echo
> $HOME/.ansible/tmp/ansible-tmp-1467294814.59-271701080215113 `" && echo
> ansible-tmp-1467294814.59-271701080215113="` echo
> $HOME/.ansible/tmp/ansible-tmp-1467294814.59-271701080215113 `" ) && sleep
> 0'
> <127.0.0.1> PUT /var/folders/rl/bjksdpqn5w5_qk0fgv7p4z352df6b5/T/tmpD3jnAy
> TO
> /Users/tsoikkel/.ansible/tmp/ansible-tmp-1467294814.59-271701080215113/azure_rm_virtualmachine.py
> <127.0.0.1> EXEC /bin/sh -c 'chmod -R u+x
> /Users/tsoikkel/.ansible/tmp/ansible-tmp-1467294814.59-271701080215113/ &&
> sleep 0'
> <127.0.0.1> EXEC /bin/sh -c '/usr/local/opt/python/bin/python2.7
> /Users/tsoikkel/.ansible/tmp/ansible-tmp-1467294814.59-271701080215113/azure_rm_virtualmachine.py;
>
> rm -rf
> "/Users/tsoikkel/.ansible/tmp/ansible-tmp-1467294814.59-271701080215113/" >
> /dev/null 2>&1 && sleep 0'
> An exception occurred during task execution. The full traceback is:
> Traceback (most recent call last):
> File
> "/var/folders/rl/bjksdpqn5w5_qk0fgv7p4z352df6b5/T/ansible_5hoWa8/ansible_module_azure_rm_virtualmachine.py",
>
> line 1281, in <module>
> main()
> File
> "/var/folders/rl/bjksdpqn5w5_qk0fgv7p4z352df6b5/T/ansible_5hoWa8/ansible_module_azure_rm_virtualmachine.py",
>
> line 1278, in main
> AzureRMVirtualMachine()
> File
> "/var/folders/rl/bjksdpqn5w5_qk0fgv7p4z352df6b5/T/ansible_5hoWa8/ansible_module_azure_rm_virtualmachine.py",
>
> line 527, in __init__
> supports_check_mode=True)
> File
> "/var/folders/rl/bjksdpqn5w5_qk0fgv7p4z352df6b5/T/ansible_5hoWa8/ansible_modlib.zip/ansible/module_utils/azure_rm_common.py",
>
> line 164, in __init__
> File
> "/usr/local/Cellar/python/2.7.10_2/Frameworks/Python.framework/Versions/2.7/lib/python2.7/site-packages/msrestazure/azure_active_directory.py",
>
> line 336, in __init__
> self.set_token()
> File
> "/usr/local/Cellar/python/2.7.10_2/Frameworks/Python.framework/Versions/2.7/lib/python2.7/site-packages/msrestazure/azure_active_directory.py",
>
> line 371, in set_token
> raise_with_traceback(AuthenticationError, "", err)
> File
> "/usr/local/Cellar/python/2.7.10_2/Frameworks/Python.framework/Versions/2.7/lib/python2.7/site-packages/msrest/exceptions.py",
>
> line 50, in raise_with_traceback
> raise error
> msrest.exceptions.AuthenticationError: , InvalidGrantError:
> (invalid_grant) AADSTS70002: Error validating credentials. AADSTS50126:
> Invalid username or password
> Trace ID: e88d80a1-dbcb-4587-a61b-408e0803ea2b
> Correlation ID: 6bab2577-18f9-4b2c-90d2-e6e09e3d00f7
> Timestamp: 2016-06-30 13:53:35Z
>
> fatal: [localhost]: FAILED! => {"changed": false, "failed": true,
> "invocation": {"module_name": "azure_rm_virtualmachine"}, "module_stderr":
> "Traceback (most recent call last):\n File
> \"/var/folders/rl/bjksdpqn5w5_qk0fgv7p4z352df6b5/T/ansible_5hoWa8/ansible_module_azure_rm_virtualmachine.py\",
>
> line 1281, in <module>\n main()\n File
> \"/var/folders/rl/bjksdpqn5w5_qk0fgv7p4z352df6b5/T/ansible_5hoWa8/ansible_module_azure_rm_virtualmachine.py\",
>
> line 1278, in main\n AzureRMVirtualMachine()\n File
> \"/var/folders/rl/bjksdpqn5w5_qk0fgv7p4z352df6b5/T/ansible_5hoWa8/ansible_module_azure_rm_virtualmachine.py\",
>
> line 527, in __init__\n supports_check_mode=True)\n File
> \"/var/folders/rl/bjksdpqn5w5_qk0fgv7p4z352df6b5/T/ansible_5hoWa8/ansible_modlib.zip/ansible/module_utils/azure_rm_common.py\",
>
> line 164, in __init__\n File
> \"/usr/local/Cellar/python/2.7.10_2/Frameworks/Python.framework/Versions/2.7/lib/python2.7/site-packages/msrestazure/azure_active_directory.py\",
>
> line 336, in __init__\n self.set_token()\n File
> \"/usr/local/Cellar/python/2.7.10_2/Frameworks/Python.framework/Versions/2.7/lib/python2.7/site-packages/msrestazure/azure_active_directory.py\",
>
> line 371, in set_token\n raise_with_traceback(AuthenticationError, \"\",
> err)\n File
> \"/usr/local/Cellar/python/2.7.10_2/Frameworks/Python.framework/Versions/2.7/lib/python2.7/site-packages/msrest/exceptions.py\",
>
> line 50, in raise_with_traceback\n raise
> error\nmsrest.exceptions.AuthenticationError: , InvalidGrantError:
> (invalid_grant) AADSTS70002: Error validating credentials. AADSTS50126:
> Invalid username or password\r\nTrace ID: xxxxxxxxxxxx \r\nCorrelation ID:
> xxxxxxxxxxxxx \r\nTimestamp: 2016-06-30 13:53:35Z\n", "module_stdout": "",
> "msg": "MODULE FAILURE", "parsed": false}
>
>
> El domingo, 29 de mayo de 2016, 18:02:00 (UTC+3), Takeshi Kuramochi
> escribió:
>>
>> Hi All,
>>
>> I would like to know details to use Azure modules ( azure_rm_xxxxxx )
>> . because it failed tasks for azure.
>>
>> I already have own azure account.
>> I think that I must get some objects ( ad_user / password ) on my
>> azure portal before I write a playbook.
>> I read below.
>>
>> https://azure.microsoft.com/en-us/documentation/articles/automation-credentials/
>>
>>
>> I set ~/.azure/credentials then I run playbook.
>>
>> ---
>> - name: VM image fact
>> azure_rm_virtualmachineimage_facts:
>> location: eastus
>> publisher: OpenLogic
>> offer: CentOS
>> sku: '7.1'
>> version: '7.1.20160308'
>>
>>
>> It failed.
>>
>> TASK [azure : VM image fact]
>> ***************************************************
>> task path: /home/vagrant/build_host/roles/azure/tasks/test.yml:1
>> <localhost> ESTABLISH LOCAL CONNECTION FOR USER: vagrant
>> <localhost> EXEC /bin/sh -c '( umask 77 && mkdir -p "` echo
>> $HOME/.ansible/tmp/ansible-tmp-1464532575.87-18674131270164 `" && echo
>> ansible-tmp-1464532575.87-18674131270164="` echo
>> $HOME/.ansible/tmp/ansible-tmp-1464532575.87-18674131270164 `" ) &&
>> sleep 0'
>> <localhost> PUT /tmp/tmpxJJVCb TO
>> /home/vagrant/.ansible/tmp/ansible-tmp-1464532575.87-18674131270164/azure_rm_virtualmachineimage_facts
>>
>>
>> <localhost> EXEC /bin/sh -c 'LANG=en_US.UTF-8 LC_ALL=en_US.UTF-8
>> LC_MESSAGES=en_US.UTF-8 /usr/bin/python
>> /home/vagrant/.ansible/tmp/ansible-tmp-1464532575.87-18674131270164/azure_rm_virtualmachineimage_facts;
>>
>>
>> rm -rf
>> "/home/vagrant/.ansible/tmp/ansible-tmp-1464532575.87-18674131270164/"
>> > /dev/null 2>&1 && sleep 0'
>> fatal: [localhost]: FAILED! => {"changed": false, "failed": true,
>> "invocation": {"module_name": "azure_rm_virtualmachineimage_facts"},
>> "module_stderr":
>> "/usr/local/lib/python2.7/dist-packages/requests/packages/urllib3/util/ssl_.py:315:
>>
>>
>> SNIMissingWarning: An HTTPS request has been made, but the SNI
>> (Subject Name Indication) extension to TLS is not available on this
>> platform. This may cause the server to present an incorrect TLS
>> certificate, which can cause validation failures. For more
>> information, see
>> https://urllib3.readthedocs.org/en/latest/security.html#snimissingwarning.\n
>>
>>
>> SNIMissingWarning\n/usr/local/lib/python2.7/dist-packages/requests/packages/urllib3/util/ssl_.py:120:
>>
>>
>> InsecurePlatformWarning: A true SSLContext object is not available.
>> This prevents urllib3 from configuring SSL appropriately and may cause
>> certain SSL connections to fail. For more information, see
>>
>> https://urllib3.readthedocs.org/en/latest/security.html#insecureplatformwarning.\n
>>
>>
>> InsecurePlatformWarning\nTraceback (most recent call last):\n File
>> \"/tmp/ansible_pmEfA1/ansible_module_azure_rm_virtualmachineimage_facts.py\",
>>
>>
>> line 239, in <module>\n main()\n File
>> \"/tmp/ansible_pmEfA1/ansible_module_azure_rm_virtualmachineimage_facts.py\",
>>
>>
>> line 236, in main\n AzureRMVirtualMachineImageFacts()\n File
>> \"/tmp/ansible_pmEfA1/ansible_module_azure_rm_virtualmachineimage_facts.py\",
>>
>>
>> line 149, in __init__\n super(AzureRMVirtualMachineImageFacts,
>> self).__init__(self.module_arg_spec)\n File
>> \"/tmp/ansible_pmEfA1/ansible_modlib.zip/ansible/module_utils/azure_rm_common.py\",
>>
>>
>> line 169, in __init__\n File
>> \"/usr/local/lib/python2.7/dist-packages/msrestazure/azure_active_directory.py\",
>>
>>
>> line 261, in __init__\n self.set_token()\n File
>> \"/usr/local/lib/python2.7/dist-packages/msrestazure/azure_active_directory.py\",
>>
>>
>> line 296, in set_token\n raise_with_traceback(AuthenticationError,
>> \"\", err)\n File
>> \"/usr/local/lib/python2.7/dist-packages/msrest/exceptions.py\", line
>> 50, in raise_with_traceback\n raise
>> error\nmsrest.exceptions.AuthenticationError: , InvalidGrantError:
>> (invalid_grant) AADSTS50034: To sign into this application the account
>> must be added to the management.core.windows.net directory.\r\nTrace
>> ID: cc08968a-517f-4e8b-ac2e-09423825472c\r\nCorrelation ID:
>> 1bd9c2bf-8299-4455-88b1-de3eced3eb80\r\nTimestamp: 2016-05-29
>> 14:36:19Z\n", "module_stdout": "", "msg": "MODULE FAILURE", "parsed":
>> false}
>>
>> PLAY RECAP
>> *********************************************************************
>> localhost : ok=1 changed=0 unreachable=0
>> failed=1
>>
>> Maybe ~/.azure/credentials has problems, but I did not understand.
>>
>> ~/.azure/credentials
>> subscription_id: <my subscription id>
>> ad_user: xxxxxxx
>> password: xxxxxxx
>>
>>
>>
>> Any and all help is appreciated!
>>
>
--
You received this message because you are subscribed to the Google Groups
"Ansible Project" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
To post to this group, send email to [email protected].
To view this discussion on the web visit
https://groups.google.com/d/msgid/ansible-project/21ec14dd-654f-4b65-a5e0-9689fc7d74dc%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
