This tool allows you to update root passwords on multiple servers using Chef's knife tool. It supports search queries for selecting servers and verifies that the password was changed successfully. To use this tool, you need SSH access and sudo privileges on the target servers.
Before using this tool, ensure the following commands are installed and available on your system:
openssl: Used for password hashing.sshpass: Required for non-interactive ssh password authentication.knife: Essential for interacting with Chef servers.
You can check if these are installed by running command -v <command-name> for each command (replace <command-name> with openssl, sshpass, or knife). If any of these commands are not installed, you will need to install them before proceeding.
Download the tool here.
To display help and see all available options, run:
./update-root-pass.sh --help-pSpecify the password in clear text (will be hashed).-hSpecify an existing password hash to use.-oSpecify an output file to save the results.-lList the machines without changing passwords.--hostsSpecify a list of hosts separated by space.--helpDisplay this help message.
- List all CentOS machines without changing passwords and save the results to a file:
./update-root-pass.sh -l -o results.txt 'platform:centos' - Change the password on all hosts specified in the list:
./update-root-pass.sh -p 'myPassword123' --hosts 'host1 host2'
- Change the password on all nodes in the Chef server matching the search query:
./update-root-pass.sh -p 'myPassword123' 'name:*'
- Change the password on all nodes in the Chef server matching the search query using the specified password hash:
./update-root-pass.sh -p 'myPassword123' -h '$6$saltsalt$hashedpasswordhere' 'name:*'