Deploying SDLinux using Ansible

  • Published on Apr 16, 2026
  • 5 minute(s) read
  • MR
 Prev Next

Deploying SDLinux Using Ansible

Deployment Guide with Ansible

©Copyright 1997 - 2025 by WinMagic Inc. All rights reserved.

Printed in Canada

Many products, software and technologies are subject to export control for both Canada and the United States of America. WinMagic advises all customers that they are responsible for familiarizing themselves with these regulations. Exports and re-exports of WinMagic Inc. products are subject to Canadian and US export controls administered by the Canadian Border Services Agency (CBSA) and the Commerce Department’s Bureau of Industry and Security (BIS). For more information, visit WinMagic’s web site or the web site of the appropriate agency.

WinMagic, SecureDoc, SecureDoc Enterprise Server, Compartmental SecureDoc, SecureDoc PDA, SecureDoc Personal Edition, SecureDoc RME, SecureDoc Removable Media Encryption, SecureDoc Media Viewer, SecureDoc Express, SecureDoc for Mac, MySecureDoc, MySecureDoc Personal Edition Plus, MySecureDoc Media, PBConnex, SecureDoc Central Database, and SecureDoc Cloud Lite are trademarks and registered trademarks of WinMagic Inc., registered in the US and other countries. All other registered and unregistered trademarks herein are the sole property of their respective owners. © 2025 WinMagic Inc. All rights reserved.

Acknowledgements

This product includes cryptographic software written by Antoon Bosselaers, Hans Dobbertin, Bart Preneel, Eric Young ([email protected]) and Joan Daemen and Vincent Rijmen, creators of the Rijndael AES algorithm.

This product includes software developed by the OpenSSL Project for use in the OpenSSL Toolkit (http://www.OpenSSL.org/).

WinMagic would like to thank these developers for their software contributions.

Contacting WinMagic

WinMagic

11-80 Galaxy Blvd.

Toronto, Ontario, M9W 4Y8

Toll free: 1-888-879-5879

Phone: (905) 502-7000

Fax: (905) 502-7001

Sales:                        

Marketing:          

Human Resources:        

Technical Support:

For information:          

For billing inquiries:

[email protected]

[email protected]

[email protected]

[email protected]

[email protected]

[email protected]

Contents

Steps to Deploy SDLinux Using Ansible

I. Prepare the Linux client

On Ubuntu Clients

Install openssh server:

sudo apt install openssh-server -y

Enable SSH service:

sudo apt install openssh-server

sudo systemctl enable ssh

sudo systemctl start ssh

sudo systemctl status ssh

On RedHat Clients

(to be filled)

II. Prepare the Control Node (Windows + WSL2)

Setup control node by choosing one of the following options.

On a Linux Environment

Set-up the ansible controller directly on either a RedHat or Ubuntu machine (since both Controller and nodes can be linux machines)

On a Windows hosted virtualized Linux Environment

Set-up the ansible controller with a virtualized Intel VT-x/EPT or AMD/RVI enabled and running on Windows:

  1. Install WSL2 with Ubuntu/Debian

Open powershell with administrator and run:

wsl --install -d Ubuntu-24.04

  1. Restart system, Ubuntu-24.04 appear the setup the user and password

Update Ubuntu:

sudo apt update && sudo apt upgrade -y

Update Redhat:

          (to be filled)

  1. Install Ansible

On Ubuntu:

sudo apt update

sudo apt install ansible -y

On RedHat:

(to be filled)

  1. Install sshpass

On Ubuntu:

sudo apt install sshpass -y

On RedHat:

(to be filled)

III. Prepare the Profile on the Control Node

  1. Copy the profile from Windows to WSL2:

mkdir -p ~/linux

cp -r /mnt/c/Users/Ori/Desktop/linux/* ~/linux

  1. Verify the folder:

ls -l ~/linux

IV. Create the Inventory

  1. Create the folder ansible  

mkdir -p ~/ansible

  1. Create file ansible-hosts:

nano ~/ansible/ansible_hosts

  1. Content:

[linux_clients]

192.168.1.28 ansible_user=quan ansible_ssh_pass=Your_Password ansible_become_pass=Your_Password ansible_connection=ssh ansible_ssh_common_args='-o StrictHostKeyChecking=no'

Note:

- The Ip : Client’ IP address

- ansible_ user= à user’s Client

- Your_Password = Password’s Client

V. Write the Ansible Playbook

  1. Create file playbook:

cd ~/ansible

nano ~/ansible/deploy_linux.yml

Sample playbook content:  

---

- name: Deploy SDLinux

 hosts: linux_clients

 become: yes

 vars:

   local_folder: "/home/riana/linux"              # the path to Profile on Windows

   remote_folder: "/home/quan/linux_dest"         # the path to Profile on WSL

   tar_file: "ub24.wmsd.tar.gz"                   # the installer which needs to unzip

 tasks:

   - name: Create destination folder on client

     ansible.builtin.file:

       path: "{{ remote_folder }}"

       state: directory

       mode: '0755'

   - name: Copy Profile from control node to client

     ansible.builtin.copy:

       src: "{{ local_folder }}/"

       dest: "{{ remote_folder }}/"

       mode: '0755'

   - name: Extract installer tar.gz file on client

     ansible.builtin.unarchive:

       src: "{{ remote_folder }}/{{ tar_file }}"

       dest: "{{ remote_folder }}/"

       remote_src: yes

   - name: Run install script

     become: yes

     ansible.builtin.shell: "./install.sh -s -n"

     args:

       chdir: "{{ remote_folder }}/winmagic"

   - name: Reboot system after install (manual method)

     shell: "sleep 2 && /sbin/reboot"

     async: 1

     poll: 0

     ignore_errors: yes

VI. Run the Playbook

Run the following command once you have completed modifying the yaml playbook file and start the deployment:

ansible-playbook -i ~/ansible/ansible_hosts deploy_linux.yml --ask-pass --ask-become-pass

Note: --ask-become-pass → enter sudo password if needed.

VII. Verify the Deployment

Verify on the client that SDLinux has been installed successfully and on the SES Server that the device has been registered.

Note: After SDLinux is installed on the client, the system will reboot, After the deployment, the user must access the client and take primary ownership

winmagic_logo_r

11-80 Galaxy Blvd. Toronto, ON, Canada M9W 4Y8

Tel: (905) 502-7000  |  Fax: (905) 502-7001

Web: www.winmagic.com  |  Email: [email protected]

WinMagic provides the world’s most secure, manageable and easy-to–use data encryption solutions. Compatible with all editions of Microsoft Windows Vista, 7, and 10 as well as Mac and Linux platforms, WinMagic’s SecureDoc protects sensitive data stored on portable media such as laptops and removable media including USB thumb drives and CD/DVDs. Thousands of the most security conscious enterprises and government organizations around the world depend on SecureDoc to minimize business risks, meet privacy and regulatory compliance requirements, and protect valuable information assets against unauthorized access. With a full complement of professional and customer services, WinMagic supports over three million SecureDoc users in approximately 43 countries. For more information, please visit www.winmagic.com, call 1-888-879-5879 or e-mail us at [email protected].

SecureDoc, SecureDoc Enterprise Server, Compartmental SecureDoc, SecureDoc PDA, SecureDoc Personal Edition, SecureDoc RME, SecureDoc Removable Media Encryption, MySecureDoc, MySecureDoc Personal Edition Plus, MySecureDoc Media, and SecureDoc Central Database are trademarks of WinMagic Inc.  Other products mentioned here in may be trademarks and / or registered trademarks of their respective owner.

© Copyright 2021 WinMagic Inc.  All rights reserved. This document is for informational purpose only. WinMagic Inc. makes NO WARRANTIES, expressed or implied, in this document. All specification stated herein are subject to change without notice.

Related articles