We have a current setup that works using Ansible v2.0.0 in which we specify ansible_ssh_user in inventory exactly as follows.
ansible_ssh_user: user@realm When running playbooks we use kinit to get a kerberos ticket using real credentials ([email protected]) and everything works. That is ansible uses the kerberos ticket for [email protected] and we can successfully connect to Windows servers. However, behavior in Ansible 2.1 and 2.2 is different. When using the newer versions, Ansible tries to connect with the fake user@realm username, ignoring our kerberos ticket and hence failing to connect. - changing ansible_ssh_user to ansible_user makes no difference - specifying the [email protected] with the -u option on the command line makes no difference What does work is setting ansible_user to [email protected] in the inventory. However, this is problematic as we have several users and don't want to have to constantly change our inventory depending on which user is actually running playbooks. Am I missing something or did something change in regards to behavior? Is there some way to get the old behavior? Thanks. -- You received this message because you are subscribed to the Google Groups "Ansible Project" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/ffc862e1-0aaf-4a68-8239-bced33283e2b%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
