conjur_variable - Fetch credentials from CyberArk Conjur.
New in version 2.5.
Synopsis
- Retrieves credentials from Conjur using the controlling host’s Conjur identity. Conjur info: https://www.conjur.org/.
Requirements
The below requirements are needed on the local master node that executes this lookup.
- The controlling host running Ansible has a Conjur identity. (More: https://developer.conjur.net/key_concepts/machine_identity.html)
Parameters
| Parameter | Choices/Defaults | Configuration | Comments |
|---|---|---|---|
| _term required | Variable path | ||
| config_file path | Default: "/etc/conjur.conf" | ini entries: [conjur, ] env:CONJUR_CONFIG_FILE | Path to the Conjur configuration file. The configuration file is a YAML file. |
| identity_file path | Default: "/etc/conjur.identity" | ini entries: [conjur, ] env:CONJUR_IDENTITY_FILE | Path to the Conjur identity file. The identity file follows the netrc file format convention. |
Examples
- debug:
msg: "{{ lookup('conjur_variable', '/path/to/secret') }}"
Return Values
Common return values are documented here, the following are the fields unique to this lookup:
| Key | Returned | Description |
|---|---|---|
| _raw | Value stored in Conjur. |
Status
This module is flagged as preview which means that it is not guaranteed to have a backwards compatible interface.
Maintenance
This lookup is flagged as community which means that it is maintained by the Ansible Community. See Module Maintenance & Support for more info.
For a list of other modules that are also maintained by the Ansible Community, see here.
Author
- UNKNOWN
Hint
If you notice any issues in this documentation you can edit this document to improve it.
© 2012–2018 Michael DeHaan
© 2018–2019 Red Hat, Inc.
Licensed under the GNU General Public License version 3.
https://docs.ansible.com/ansible/2.6/plugins/lookup/conjur_variable.html