I'm trying to install splunkforwarder via saltstack on ~ 40 servers. This works well as such, but handling the password change (a different random password for each server) is proving a bit more tedious than we were hoping for.
For the time being I'm using my workstation and a bash-script to generate passwords over and over, by "rm'ing the current passwd, setting a new password programatically, cp'ing the generated passwd-file to passwd.FQDN, and saving the password to a seperate ASCII file so I can later add it to a keepass DB.
Then I copy the generated passwd files to the servers via jinja template and a salt-state.
How can I generate the passwd-hashes w/o having to recreate the passwd file over and over, so I can do this locally on the salt-master than than my desktop?
... View more