infamousjoeg · April 10, 2024 16:39
diff --git a/connect_networkdevice.yaml b/connect_networkdevice.yaml
 - hosts: all
  gather_facts: no
  
  tasks:

  - block:
    - name: Retrieve Password from CyberArk
      cyberark.pas.cyberark_credential:
        api_base_url: "{{ ccp_base_url }}"
        app_id: "{{ ccp_app_id }}"
        query: "Safe={{ ccp_safe }};Object=Network Device-CiscoSSH-{{ inventory_hostname }}-root"
        validate_certs: "{{ ccp_validate_certs }}"
      register: cyberark_key_response

    - name: Set SSH Username to Fact
      ansible.builtin.set_fact:
        ansible_user: "{{ cyberark_key_response.result.UserName }}"

    - name: Set SSH Password to Fact
      ansible.builtin.set_fact:
        ansible_ssh_password: "{{ cyberark_key_response.result.Content }}"

    delegate_to: localhost
    no_log: yes

  - name: Connect to Remote Network Device
    ansible.netcommon.network_cli:
      host: "{{ inventory_hostname }}"
      host_key_auto_add: yes
	- hosts: all
	gather_facts: no

	tasks:

	- block:
	- name: Retrieve Password from CyberArk
	cyberark.pas.cyberark_credential:
	api_base_url: "{{ ccp_base_url }}"
	app_id: "{{ ccp_app_id }}"
	query: "Safe={{ ccp_safe }};Object=Network Device-CiscoSSH-{{ inventory_hostname }}-root"
	validate_certs: "{{ ccp_validate_certs }}"
	register: cyberark_key_response

	- name: Set SSH Username to Fact
	ansible.builtin.set_fact:
	ansible_user: "{{ cyberark_key_response.result.UserName }}"

	- name: Set SSH Password to Fact
	ansible.builtin.set_fact:
	ansible_ssh_password: "{{ cyberark_key_response.result.Content }}"

	delegate_to: localhost
	no_log: yes

	- name: Connect to Remote Network Device
	ansible.netcommon.network_cli:
	host: "{{ inventory_hostname }}"
	host_key_auto_add: yes