Chapter 12. Ansible automation hub variables
Variable | Description |
---|---|
| Required |
| If upgrading from Ansible Automation Platform 2.0 or earlier, you must either:
Generating a new token invalidates the existing token. |
|
This variable is not set by default. Set it to
When this is set to
|
| If a collection signing service is enabled, collections are not signed automatically by default.
Setting this parameter to
Default = |
| Optional
Ansible automation hub provides artifacts in
You can also set
Default = |
| If a collection signing service is enabled, you must provide this variable to ensure collections can be properly signed.
|
| If a collection signing service is enabled, you must provide this variable to ensure collections can be properly signed.
|
|
The default install does not create a signing service. If set to
Default = |
| The default install deploys a TLS enabled Ansible automation hub. Use if automation hub is deployed with HTTP Strict Transport Security (HSTS) web-security policy enabled. Unless specified otherwise, the HSTS web-security policy mechanism is enabled. This setting allows you to disable it if required.
Default = |
| Optional If Ansible automation hub is deployed with HTTPS enabled.
Default = |
|
When set to
Default = |
| Optional Dictionary of setting to pass to galaxy-importer. At import time collections can go through a series of checks.
Behavior is driven by
Examples are This parameter enables you to drive this configuration. |
For Ansible automation hub to connect to LDAP directly; the following variables must be configured. A list of other LDAP related variables (not covered by the automationhub_ldap_xxx
variables below) that can be passed using the ldap_extra_settings
variable can be found here: https://django-auth-ldap.readthedocs.io/en/latest/reference.html#settings
Variable | Description |
---|---|
|
The name to use when binding to the LDAP server with |
| Required
The password to use with |
|
An LDAPSearch object that finds all LDAP groups that users might belong to. If your configuration makes any references to LDAP groups, this and
Default = |
| Optional Search filter for finding group membership.
Default = |
| Optional
Default = |
| Optional
Default = |
| The URI of the LDAP server. This can be any URI that is supported by your underlying LDAP libraries. |
| An LDAPSearch object that locates a user in the directory. The filter parameter should contain the placeholder %(user)s for the username. It must return exactly one result for authentication to succeed. |
|
When using Single Sign-On, specify the main automation hub URL that clients will connect to, for example,
If not specified, the first node in the |
| Required The database name.
Default = |
| Required if not using internal database. |
| The password for the automation hub PostgreSQL database.
Do not use special characters for |
| Required if not using internal database. Default = 5432 |
| Required.
Default = |
| Required
Default = |
| Optional If automation hub enforces the approval mechanism before collections are made available. By default when you upload collections to automation hub an administrator must approve it before it is made available to the users.
If you want to disable the content approval flow, set the variable to
Default = |
| Optional
|
| Optional
Same as |
| For Red Hat Ansible Automation Platform 2.2 and later, this value is no longer used. If automation hub should validate certificate when requesting itself because by default, Ansible Automation Platform deploys with self-signed certificates.
Default = |
| If upgrading from Red Hat Ansible Automation Platform 2.0 or earlier, you must either:
|
| Relative or absolute path to the Fernet symmetric encryption key you want to import. The path is on the Ansible management node. It is used to encrypt certain fields in the database (such as credentials.) If not specified, a new key will be generated. |