mirror of
https://github.com/jumpserver/jumpserver.git
synced 2026-07-04 00:03:34 +00:00
47 lines
1.6 KiB
YAML
47 lines
1.6 KiB
YAML
- hosts: demo
|
|
gather_facts: no
|
|
tasks:
|
|
- name: Test privileged account
|
|
ansible.windows.win_ping:
|
|
|
|
- name: Push user password
|
|
community.windows.win_domain_user:
|
|
name: "{{ account.username }}"
|
|
password: "{{ account.secret }}"
|
|
update_password: always
|
|
password_never_expires: yes
|
|
state: present
|
|
groups: "{{ params.groups }}"
|
|
groups_action: add
|
|
ignore_errors: true
|
|
when: account.secret_type == "password"
|
|
|
|
- name: Refresh connection
|
|
ansible.builtin.meta: reset_connection
|
|
|
|
- name: Verify password (win_ping)
|
|
ansible.windows.win_ping:
|
|
vars:
|
|
ansible_user: "{{ account.full_username }}"
|
|
ansible_password: "{{ account.secret }}"
|
|
when: account.secret_type == "password" and check_conn_after_change
|
|
register: verify_winping
|
|
ignore_errors: true
|
|
ignore_unreachable: true
|
|
|
|
- name: Verify password (pyfreerdp)
|
|
rdp_ping:
|
|
login_host: "{{ jms_asset.origin_address }}"
|
|
login_port: "{{ jms_asset.protocols | selectattr('name', 'equalto', 'rdp') | map(attribute='port') | first | default(3389, true) }}"
|
|
login_user: "{{ account.username }}"
|
|
login_password: "{{ account.secret }}"
|
|
login_secret_type: "{{ account.secret_type }}"
|
|
gateway_args: "{{ jms_gateway | default({}) }}"
|
|
when:
|
|
- account.secret_type == "password"
|
|
- check_conn_after_change
|
|
- verify_winping is not defined
|
|
or (verify_winping.unreachable | default(false))
|
|
or (verify_winping.failed | default(false))
|
|
delegate_to: localhost
|