Bug 1809502
Summary: | Embedded Ansible playbooks do not run (regression) | ||
---|---|---|---|
Product: | Red Hat CloudForms Management Engine | Reporter: | Peter McGowan <pmcgowan> |
Component: | Embedded Ansible | Assignee: | Nick LaMuro <nlamuro> |
Status: | CLOSED NOTABUG | QA Contact: | Sudhir Mallamprabhakara <smallamp> |
Severity: | high | Docs Contact: | Red Hat CloudForms Documentation <cloudforms-docs> |
Priority: | high | ||
Version: | 5.11.2 | CC: | dmetzger, gmccullo, lufu, mkanoor, obarenbo, tfitzger |
Target Milestone: | GA | ||
Target Release: | 5.11.5 | ||
Hardware: | Unspecified | ||
OS: | Unspecified | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | If docs needed, set a value | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2020-03-04 14:13:34 UTC | Type: | Bug |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | CFME Core | Target Upstream Version: | |
Embargoed: |
Description
Peter McGowan
2020-03-03 09:32:18 UTC
Recreated the issue on 10.8.99.115. Ansible runner workflow did not run the playbook and returned the result. Forward BZ to embedded ansible team for debugging. Playbook service works well with 5.11.2.1 but failed with 5.11.2.2. There is a file called cmdline which ansible runner creates with the following content: --become --ask-become-pass --user root --become-method sudo --ask-pass Seems option --ask-become-pass would hang the playbook execution. Remove this option from cmdline file then playbook got executed from command line. On Billy's appliance where playbook services worked, the content of cmdline file has only: --become-method sudo Not sure why ansible runner creates different content for cmdline file. Both appliances are running 5.11.2.2. Hi all, After debugging on the reported appliance and another reproducer, the error seems to be an issue with the combination of the following: 1. The use of "Escalate Privilege" in the playbook catalog item 2. Using a credential that doesn't have a "Privilege Escalation Password" field After creating a new credential that includes the secondary appliance machine credential that includes both the password for the appliance in the "Password" and "Privilege Escalation Password" fields, the affected playbook ran without issue. I would argue that this is not a bug, but possibly a lack of documentation or some UX that could be improved to provide better insight for failing playbook runs (which might require some backend changes to support). -Nick Based on findings thus far, closing this ticket. If the problem is encountered again, please re-open or create a new ticket. |