Security — 54 Ansible Tutorials

Browse 54 tutorials about Security on AnsiblePilot.

• Ansible Become: Privilege Escalation Complete Guide (sudo, su, runas) — Master Ansible become for privilege escalation. Configure sudo, su, runas, become_user, become_method, become_flags, per-task escalation, and troubleshoot permission errors with practical YAML examples.
• Integrating HashiCorp Vault with Event-Driven Ansible in AAP 2.6 — Step-by-step guide to integrating HashiCorp Vault for external secret management with Event-Driven Ansible in AAP 2.6.
• Centralized RBAC with the Gateway API in AAP 2.6 — How AAP 2.6 centralizes role-based access control (RBAC) through the platform gateway API for unified identity and access management.
• Security Best Practices for Ansible Automation Platform 2.6 — Comprehensive security guide for AAP 2.6 covering RBAC, secrets management, network security, and compliance best practices.
• Ansible for AI Security: Protect Models, APIs & Data Pipelines (2026 Guide) — Complete guide to AI security automation with Ansible. Protect LLM API endpoints, secure model artifacts, harden ML training pipelines, implement prompt injection defenses, manage AI API keys, and enforce AI governance policies for 2026.
• Ansible for Confidential Computing: Deploy TEEs, SEV & SGX (2026 Guide) — Complete guide to automating confidential computing with Ansible. Deploy AMD SEV-SNP encrypted VMs, configure Intel SGX/TDX trusted execution environments, manage attestation services, and protect sensitive AI workloads with hardware-based data-in-use encryption.
• Ansible for Data Sovereignty & Geopatriation: Manage Sovereign Cloud Infrastructure (2026 Guide) — Complete guide to automating data sovereignty and geopatriation with Ansible. Enforce data residency policies, deploy region-locked infrastructure, manage sovereign cloud stacks, comply with GDPR/DORA/NIS2, and automate multi-region governance for 2026.
• Ansible for Digital Provenance: Content Authenticity & AI Watermarking (2026 Guide) — Complete guide to automating digital provenance with Ansible. Deploy C2PA content credentials infrastructure, configure media signing pipelines, manage certificate chains for content authenticity, and implement AI-generated content watermarking at scale.
• Ansible and the EU Cyber Resilience Act (CRA): What It Means for Users — How the EU Cyber Resilience Act (CRA) Regulation EU 2024/2847 affects Ansible users, contributors, and maintainers. Red Hat's role as open source steward, compliance timeline, and security best practices.
• Ansible for Post-Quantum Cryptography: Migrate TLS, SSH & PKI (2026 Guide) — Complete guide to automating post-quantum cryptography migration with Ansible. Update SSH algorithms, configure PQC-ready TLS, migrate PKI certificates, audit cryptographic inventory, and prepare infrastructure for quantum-safe standards (NIST ML-KEM, ML-DSA, SLH-DSA).
• Ansible for Preemptive Cybersecurity: Proactive Defense Automation (2026 Guide) — Complete guide to preemptive cybersecurity with Ansible. Automate threat hunting, reduce attack surface, enforce zero-trust policies, implement continuous compliance, deploy deception technology, and build proactive defense automation for 2026.
• Ansible for SOC and SIEM: Automate Security Operations Complete Guide — Complete guide to Ansible for Security Operations Centers (SOC) and SIEM integration. Automate incident response playbooks, log forwarding to Splunk/ELK/QRadar, threat hunting, firewall rules, IOC blocking, and compliance scanning with practical examples.
• Ansible SSH Password Authentication: sshpass & Connection Setup (Guide) — Complete guide to Ansible SSH password authentication. Install sshpass, configure ansible_password, use Ansible Vault for secure credentials, and troubleshoot common SSH password errors.
• Ansible Troubleshooting SSH Connection Issues — Learn how to resolve SSH authentication errors in Ansible due to unestablished host authenticity for seamless playbook execution.
• Ansible Vault: Encrypt Secrets & Manage Credentials (2026 Guide) — Complete guide to Ansible Vault. Encrypt files and strings, manage vault passwords, use multiple vault IDs, and integrate with CI/CD and AWX/AAP.
• Ansible Vault Deep Dive: Encrypt Secrets, Multi-Vault, Best Practices — Complete Ansible Vault guide. Learn to encrypt variables, files, and strings. Covers multi-vault IDs, vault password files, CI/CD integration, rekeying, and best practices for managing secrets in production environments.
• Ansible code in RHSB-2021-009 Log4Shell - Remote Code Execution - log4j (CVE-2021-44228) — Learn how my Ansible Playbook was featured in Red Hat Security Bulletin RHSB-2021-009 to address the Log4Shell vulnerability (CVE-2021-44228). Discover the playbook and its role in mitigating security risks.
• Ansible firewalld & ufw Modules: Manage Firewall Rules (Complete Guide) — Complete guide to Ansible firewalld and ufw modules. Open ports, allow services, manage zones, configure rich rules, set up NAT, and manage firewall state on RHEL and Ubuntu with practical examples.
• Ansible no_log: Hide Sensitive Output in Playbooks (Complete Guide) — Complete guide to Ansible no_log. Hide sensitive data like passwords, API tokens, and secrets from playbook output. Use no_log on tasks, loops, and debug, with best practices for secure automation.
• Ansible Vault Error: 'Attempting to decrypt but no vault secrets found' Fix — Fix Ansible error 'Attempting to decrypt but no vault secrets found'. Provide vault password via --ask-vault-pass, password file, or environment variable.
• Ansible troubleshooting - Error no-log-password — Learn how to protect sensitive data in Ansible playbooks by avoiding common pitfalls with loops and using Ansible Lint no-log-password rule to prevent password logging.
• Ansible troubleshooting - Kubernetes K8s or OpenShift OCP 401 Unauthorized — Explore troubleshooting steps for Kubernetes 401 Unauthorized errors in Ansible when interacting with Kubernetes or OpenShift clusters.
• Ansible-Lint Rule Analysis and Best Practices — A comprehensive guide to navigate Ansible-Lint rule categories and best practices for efficient and error-free automation.
• Ansible-Lint: Complete Guide to Linting Playbooks & Roles — Complete guide to ansible-lint. Install, configure, run linting on playbooks and roles, fix common errors, and integrate with CI/CD pipelines.
• Deploy Kubernetes Resources with Ansible Playbook — Learn how to deploy Kubernetes resources using Ansible. Follow this guide to create namespaces, pods, and services with an Ansible playbook.
• Optimize Kubernetes CPU Resources with Ansible Playbooks — Learn to assign CPU resources to Kubernetes and OpenShift pods using Ansible. Streamline your container management with effective resource configuration.
• Assign Memory to Kubernetes Pods with Ansible — Learn how to assign memory resources to Kubernetes or OpenShift containers and pods using Ansible. Follow our live Playbook and simple code examples.
• Automate CIS Benchmark Hardening for RHEL 9 with Ansible — Discover how to automate CIS Benchmark hardening for RHEL 9 systems using Ansible. Simplify security compliance with the "ansible-lockdown" project for efficient, effective protection.
• Strengthening Security: Automating CIS Benchmark Hardening for RHEL 9 with Ansible — Automate CIS Benchmark hardening for RHEL 9 using Ansible with the Ansible Lockdown roles, ensuring robust security configurations across systems.
• Automating SSL/TLS Certificate Rotation in AKS — Learn how to automate SSL/TLS certificate rotation in Azure Kubernetes Service (AKS) using Cert-Manager and custom scripts for seamless security.
• Can AI Generate Safe Ansible Playbooks? Risks, Limits, and Best Practices — Can AI generate safe Ansible playbooks? Analysis of real AI-generated playbook failures, security risks, idempotency gaps, and a practical review checklist. Covers Lightspeed, Copilot, ChatGPT, and Claude with examples of what goes wrong.
• Configuring Kernel Parameters in RedHat-like Linux Systems with Ansible System Role — Learn how to configure kernel parameters in RedHat-like Linux systems using the Ansible System Role. Follow our live Playbook example for efficient system management.
• Configure a Pod to Use a Volume for Storage on Kubernetes or OpenShift with Ansible — Learn how to configure a Kubernetes or OpenShift Pod to use a volume for persistent storage with Ansible. This guide includes a live Playbook example, Ansible module details, and execution steps for managing storage efficiently.
• Create Kubernetes K8s or OpenShift OCP Pod - nginx - Ansible module k8s — How to automate the creation of "nginx" Pod in namespace "example" of Kubernetes K8s or OpenShift OCP with Ansible module k8s.
• Create Kubernetes K8s or OpenShift OCP Secret - Ansible module k8s — How to automate the creation of “mysecret” secret in namespace “default” Kubernetes K8s or OpenShift OCP with Ansible module k8s.
• Create Kubernetes K8s or OpenShift OCP Service - Ansible module k8s — How to automate the creation of "nginx-service" Service and "nginx" Pod in namespace "example" of Kubernetes K8s or OpenShift OCP with Ansible module k8s.
• Ansible Vault: Encrypt, Decrypt & Manage Secrets (Complete Guide) — Complete guide to Ansible Vault. Encrypt files and strings, decrypt secrets, use vault passwords, and manage encrypted variables securely.
• Ansible SELinux: Manage Modes, Booleans & Contexts (Complete Guide) — How to automate the enabling or disabling of SELinux Permissive policy per single process or domain keeping the whole system under enforcing policy and make it persistent after a reboot on Linux with Ansible.
• Enable or Disable SELinux Boolean on Linux - Ansible module seboolean — How to automate the enabling of the "httpd_use_nfs" SELinux boolean and make it persistent after a reboot on Linux with Ansible.
• How to install Ansible in Kali Linux — Ansible install — Install Ansible on Kali Linux with this 2026 guide. Automate security testing and penetration testing lab setup with Ansible.
• Mitigate CVE-2021-4034 on RHEL with Ansible Playbook — HUse Ansible to mitigate CVE-2021-4034 on RHEL systems. Automate the installation of SystemTap, debugging packages, and deploy mitigation scripts.
• Installing and Enabling SELinux with Ansible on RHEL 8 — Learn how to use Ansible to install, configure, and enable SELinux on RHEL 8. Ensure security and compliance through automation.
• Ansible modprobe: Load & Unload Linux Kernel Modules (Guide) — How to load and unload Linux kernel modules with Ansible modprobe module. Manage drivers, configure module parameters, and persist across reboots with examples.
• Pluralsight The IT Ops Sessions: Using Ansible Sign and Verify — In this IT Ops session, you’ll learn how to use the "ansible-sign" command line utility to sign and verify using a GPG signature in your Ansible project.
• Pluralsight The IT Ops Sessions: Ansible Sign, Verify, Event-Driven and Ansible Generative AI — How to use the "ansible-sign" command line utility to sign and verify using a GPG signature in your Ansible project, Event-Driven Ansible, Rulebooks and Lightspeed Generative AI.
• Project signature verification with GPG and ansible-sign — Learn how to GPG-sign an Ansible project using the ansible-sign command line tool. Watch a live Playbook by Luca Berton and transform your project from non-signed to securely signed.
• Project signing with GPG and ansible-sign — How to sign an Ansible project using GPG and ansible-sign command line utility.
• Ansible sysctl Module: Set Linux Kernel Parameters (Persistent) — Configure Linux kernel parameters with Ansible ansible.posix.sysctl module. Set net, vm, fs parameters persistently with validation and rollback examples.
• Set the SELinux Policy States and Modes on Linux - Ansible module selinux — How to automate the setting and verification of the "enforcing" SELinux mode and state with "targeted" policy and relabel the filesystem if necessary on Linux target with Ansible.
• Use Ansible Vault in Ansbile Playbook - ansible vault — Learn how to use Ansible Vault to secure sensitive data such as passwords and access keys in your playbooks with practical examples and a live Playbook.

All tags · All articles · Home