How to run apt update and upgrade via Ansible shell?


I’m trying to use Ansible to run the following two commands:

sudo apt-get update && sudo apt-get upgrade -y

I know with ansible you can use:

ansible all -m shell -u user -K -a "uptime"

Would running the following command do it? Or do I have to use some sort of raw command

ansible all -m shell -u user -K -a "sudo apt-get update && sudo apt-get upgrade -y"


I wouldn’t recommend using shell for this, as Ansible has the apt module designed for just this purpose. I’ve detailed using apt below.

In a playbook, you can update and upgrade like so:

The cache_valid_time value can be omitted. Its purpose from the docs:

Update the apt cache if its older than the cache_valid_time. This
option is set in seconds.

So it’s good to include if you don’t want to update the cache when it has only recently been updated.

To do this as an ad-hoc command you can run:

ad-hoc commands are described in detail here

Note that I am using --become and become: true. This is an example of typical privilege escalation through Ansible. You use -u user and -K (ask for privilege escalation password). Use whichever works for you, this is just to show you the most common form.

Leave a Reply