Encrypting Sensitive Information

Ansible Vault is an Ansible feature that enables you to keep sensitive data such as passwords or keys in encrypted form.

Although Ansible supports both encrypted vault files to specifically hold sensitive data or encryption of individual fields directly in the inventory file, the CMP Converged Monetisation Platform. The MDS Global product that supports customer care and billing for digital service providers. installation uses the encryption of individual fields method. If a vault password is specified when saving the inventory file from the Inventory Configuration Tool then all data sensitive fields will be encrypted.

When sensitive date is encrypted, one of the following command line flags should be used when running the ansible-playbook program: --ask-vault-pass or --vault-password-file.

The --ask-vault-password parameter forces the ansible-playbook program to prompt the user A person with the capability to log in to the CMP GUI software, such as a customer service advisor or agent. to enter the vault password and like ansible-vault above, the --vault-password-file property points to the plain text file where the vault password is stored.