diff --git a/tasks/create_users_groups.yml b/tasks/create_users_groups.yml index 85603de7f0f097dce3be86cada838eb46a7e7235..c6627e97972ad06afa1a486f6fc6f929fcc91942 100644 --- a/tasks/create_users_groups.yml +++ b/tasks/create_users_groups.yml @@ -37,15 +37,18 @@ uid: "{{ item.value.uid }}" update_password: on_create loop: "{{ human_users | dict2items }}" - when: ( item.value.state == "present" ) - no_log: true + when: + - item.value.state == "present" + - item.key != ansible_user # we cannot modify the user that is used to make the connection, because the Python process uses it - name: lock HUMAN users ansible.builtin.user: name: "{{ item.key }}" password_lock: "{{ item.value.password_lock }}" loop: "{{ human_users | dict2items }}" - when: ( item.value.state == "present" ) + when: + - item.value.state == "present" + - item.key != ansible_user # we cannot modify the user that is used to make the connection, because the Python process uses it - name: create ROBOT users ansible.builtin.user: @@ -61,12 +64,15 @@ uid: "{{ item.value.uid }}" update_password: on_create loop: "{{ robot_users | dict2items }}" - when: ( item.value.state == "present" ) - no_log: true + when: + - item.value.state == "present" + - item.key != ansible_user # we cannot modify the user that is used to make the connection, because the Python process uses it - name: lock ROBOT users ansible.builtin.user: name: "{{ item.key }}" password_lock: "{{ item.value.password_lock }}" loop: "{{ robot_users | dict2items }}" - when: ( item.value.state == "present" ) + when: + - item.value.state == "present" + - item.key != ansible_user # we cannot modify the user that is used to make the connection, because the Python process uses it