add below command on Control Node

   cd ~/ && ssh-keygen -t rsa -f ~/.ssh/id_rsa -N ''
   cat ~/.ssh/id_rsa.pub | sed 's/^/{"/;s/$/"}/' | sed 's/ssh-rsa/pub_key\":\ "ssh-rsa/g' > ~/my_creds.json
   aws secretsmanager create-secret --name MyAnsibleSecret --description "My public key of ansible master" --secret-string file://my_creds.json --region us-east-1
   rm ~/my_creds.json

#========================================================================#

add below command on Managed Nodes

   sudo yum install jq -y
   aws secretsmanager get-secret-value --secret-id MyAnsibleSecret --region us-east-1 | jq ".SecretString" | sed 's/[\]//g' | sed 's/.//' | sed  's/.$//' | jq ".pub_key" | sed 's/"//g' >> ~/.ssh/authorized_keys

use below command to delete the secrets from secrets manager

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

secrets_manager.md

secrets_manager.md

Below example shows how secrets manger can be used to copy ssh-keys

The Secrets Manger access should be provided both for control node and managed node

add below command on Control Node

add below command on Managed Nodes

use below command to delete the secrets from secrets manager

aws secretsmanager delete-secret --secret-id MyAnsibleSecret --region us-east-1

Files

secrets_manager.md

Latest commit

History

secrets_manager.md

File metadata and controls

Below example shows how secrets manger can be used to copy ssh-keys

The Secrets Manger access should be provided both for control node and managed node

add below command on Control Node

add below command on Managed Nodes

use below command to delete the secrets from secrets manager

aws secretsmanager delete-secret --secret-id MyAnsibleSecret --region us-east-1