https://github.com/ringods/ansible-atriso-config
Automated setup of my MacOS system(s) based on Superlumic
https://github.com/ringods/ansible-atriso-config
ansible macos
Last synced: about 1 year ago
JSON representation
Automated setup of my MacOS system(s) based on Superlumic
- Host: GitHub
- URL: https://github.com/ringods/ansible-atriso-config
- Owner: ringods
- Created: 2018-12-21T08:56:44.000Z (over 7 years ago)
- Default Branch: main
- Last Pushed: 2025-03-27T12:40:26.000Z (over 1 year ago)
- Last Synced: 2025-04-28T13:08:28.472Z (about 1 year ago)
- Topics: ansible, macos
- Language: Python
- Size: 124 KB
- Stars: 4
- Watchers: 0
- Forks: 1
- Open Issues: 5
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
# ansible-atriso-config
Ansible driven configuration automation for:
* macOS
* [PiKVM](https://pikvm.org/)
Initial inspiration for the macOS setup from [Superlumic](https://github.com/superlumic)
but went with a more purer Ansible driven setup similar to [geerlingguy/mac-dev-playbook](https://github.com/geerlingguy/mac-dev-playbook).
## Inspiration
* [superlumic](https://github.com/superlumic/superlumic-config)
* [osxc](https://github.com/osxc/starter)
* [mac-dev-playbook](https://github.com/geerlingguy/mac-dev-playbook)
* [macos-virtualbox-vm](https://github.com/geerlingguy/macos-virtualbox-vm)
## Preparation
* Install Ansible
* clone this repo
* run `ansible-galaxy install -r requirements.yml --force`
## Usage
For the MacBook Pro laptops, use one of the following commands:
* run `ansible-playbook playbooks/mac-personal/main.yml -K`
* run `ansible-playbook playbooks/mac-work/main.yml -K`
For the PiKVM, use the following command:
* run `ansible-playbook playbooks/pikvm/main.yml --extra-vars @secrets.yml`
The `secrets.yml` file contains a DNSimple API token created on the [DNSimple portal](https://dnsimple.com/dashboard).
The ssh keys can be found in 1Password.
## Needs automation
The following parts need conversion into Ansible roles & tasks, but are documented here in the meantime.
### PiKVM
After the Ansible setup, the PiKVM has the Certbot DNSimple plugin installed, together with the config file containing a DNSimple API token. The following commands are a one time setup required to get the certificate generated and renewed automatically:
```bash
$ rw
$ kvmd-certbot certonly --dns-dnsimple --dns-dnsimple-credentials /var/lib/kvmd/pst/data/certbot/runroot/certbot-dnsimple.conf -d kvm.home.atriso.be --email ringo@de-smet.name -n --agree-tos
$ kvmd-certbot install_nginx kvm.home.atriso.be
$ kvmd-certbot install_vnc kvm.home.atriso.be
$ systemctl enable --now kvmd-certbot.timer
$ ro
```