User Creation with Sudo & PEM key -- Ansible Automation

1. # Creating a User with Adding into Sudoers file. And also providing user to public key login Access.
2. # Author : Ashok Kalakoti
3. # Date: 2017
4.  
5. ---
6. - hosts: all
7.   become: yes
8.   become_user: root
9.  
10.   tasks:
12.     - name: Copy sudoers file for safety
13.       command: cp -f /etc/sudoers /etc/sudoers.tmp
14.  
15.     - name: Create sudoers file backup
16.       command: cp -f /etc/sudoers /etc/sudoers.bak
17.  
18.     - name: Create admins group
19.       group: name=admins system=yes state=present
20.  
21.     - name: make sure we can sudo as admin group
22.       lineinfile: dest=/etc/sudoers.tmp state=present regexp='^%admins' line='%admins ALL=(ALL) ALL'
23.  
24.     - name: also make sure ssh-agent works via sudo
25.       lineinfile: dest=/etc/sudoers.tmp state=present regexp='^Defaults env_keep\+\=SSH_AUTH_SOCK' line='Defaults env_keep+=SSH_AUTH_SOCK'
26.  
27.     - name: User Adding and Appending in Sudoers file
28.       user:
29.        name: ashok
30.        groups: admins
31.        append: yes
32.        password: $1$Ashok$zyIc8nUhsB0urEKYNlktk.
33.  
34.     - name: Final sudoers file check
35.       shell: visudo -q -c -f /etc/sudoers.tmp && cp -f /etc/sudoers.tmp /etc/sudoers
36.      
37.     - name: Set up authorized keys for the Ashok user
38.       authorized_key: user=ashok key="{{item}}"
39.       with_file:
40.        - /home/ansadm/.ssh/id_rsa.pub