AnsiblePilot — Master Ansible Automation

AnsiblePilot is the leading resource for learning Ansible automation, DevOps, and infrastructure as code. Browse over 1,400 tutorials covering Ansible modules, playbooks, roles, collections, and real-world examples. Whether you are a beginner or an experienced engineer, our step-by-step guides help you automate Linux, Windows, cloud, containers, and network infrastructure.

Popular Topics

About Luca Berton

Luca Berton is an Ansible automation expert, author of 8 Ansible books published by Apress and Leanpub including "Ansible for VMware by Examples" and "Ansible for Kubernetes by Example", and creator of the Ansible Pilot YouTube channel. He shares practical automation knowledge through tutorials, books, and video courses to help IT professionals and DevOps engineers master infrastructure automation.

How AI Is Changing Ansible Automation in 2026

By Luca Berton · Published 2024-01-01 · Category: installation

How AI is transforming Ansible automation in 2026. Covers Red Hat Ansible Lightspeed, AI-assisted playbook generation, MCP integration, LLM-powered.

AI went from generating basic "install nginx" playbooks in 2024 to understanding multi-tier infrastructure patterns in 2026. Here's what's real, what's hype, and what you should actually use.

The Current State (April 2026)

AI ToolWhat It DoesMaturity
Ansible LightspeedContext-aware playbook generation in VS CodeProduction (AAP 2.6)
GitHub CopilotGeneral code completion, decent YAML/AnsibleProduction
MCP ProtocolAI agent ↔ AAP API integrationEarly adoption
LLM troubleshootingError diagnosis and fix suggestionsExperimental
AI inventory generationAuto-discover and build inventoryPreview (AAP 2.6)

Red Hat Ansible Lightspeed (IBM watsonx)

Lightspeed is the most significant AI integration for Ansible. Built on IBM watsonx Code Assistant, it generates playbooks from natural language descriptions.

What It Does Well

# Prompt: "Install and configure PostgreSQL 16 on RHEL 9 with custom data directory"
# Lightspeed generates:
- name: Install PostgreSQL 16
  ansible.builtin.dnf:
    name:
      - postgresql16-server
      - postgresql16-contrib
    state: present

- name: Initialize database with custom data directory
  ansible.builtin.command:
    cmd: /usr/pgsql-16/bin/postgresql-16-setup initdb
    creates: "{{ postgresql_data_dir }}/PG_VERSION"
  environment:
    PGDATA: "{{ postgresql_data_dir }}"

- name: Configure postgresql.conf
  ansible.builtin.lineinfile:
    path: "{{ postgresql_data_dir }}/postgresql.conf"
    regexp: "{{ item.regexp }}"
    line: "{{ item.line }}"
  loop:
    - { regexp: '^#?listen_addresses', line: "listen_addresses = '{{ postgresql_listen }}'" }
    - { regexp: '^#?max_connections', line: "max_connections = {{ postgresql_max_connections }}" }
  notify: restart postgresql

What It Gets Wrong

  • Idempotency gaps: Sometimes generates shell tasks where a module exists
  • Deprecated syntax: Occasionally uses with_items instead of loop
  • Security oversights: May skip no_log: true for tasks with passwords
  • Over-engineering: Generates 50-task roles when 5 tasks would suffice

How to Use It Effectively

  1. Write clear task names — Lightspeed uses the task name: as context
  2. Review every suggestion — Don't accept blindly
  3. Run ansible-lint after — Catches deprecated patterns
  4. Use it for boilerplate — Great for standard patterns, verify the details

GitHub Copilot for Ansible

Copilot understands YAML and Ansible patterns surprisingly well:

# Type the task name, Copilot completes the module + params:
- name: Create application user with SSH key
  # Copilot suggests:
  ansible.builtin.user:
    name: "{{ app_user }}"
    groups: "{{ app_groups }}"
    shell: /bin/bash
    create_home: true
    generate_ssh_key: true
    ssh_key_bits: 4096

Copilot Strengths

  • Fast boilerplate generation
  • Understands module parameter names
  • Good at repeating patterns from your codebase
  • Works in any editor (VS Code, Neovim, JetBrains)

Copilot Weaknesses

  • No Ansible-specific training (general code model)
  • Doesn't know your inventory or role structure
  • May suggest community modules that aren't installed
  • No awareness of your Ansible version

MCP: AI Agents Controlling Ansible

Model Context Protocol (MCP) lets AI agents interact directly with Ansible Automation Platform:

User: "Patch all staging web servers to the latest kernel"

AI Agent → MCP → AAP API:
1. Query inventory for staging web servers
2. Check current kernel versions
3. Create job template for kernel update
4. Launch job with rolling update strategy
5. Monitor job status
6. Report results back to user

See Ansible MCP Integration Guide for implementation details.

See also: Can AI Generate Safe Ansible Playbooks? Risks, Limits, and Best Practices

AI-Powered Troubleshooting

How It Works Today

Error: "UNREACHABLE! Failed to connect to host via ssh"

AI diagnosis:
1. Check: Is SSH port open? → nc -zv host 22
2. Check: Is the right user configured? → ansible_user
3. Check: Is the SSH key correct? → ansible_ssh_private_key_file
4. Check: Is host key in known_hosts? → ssh-keyscan
5. Most likely cause based on error context: [specific fix]

What's Coming

  • Automated remediation: AI proposes a fix playbook for the error
  • Pattern recognition: "This error usually occurs after OS upgrades — check SSH daemon config"
  • Correlation: "3 hosts failed with the same error — likely a network issue, not per-host"

AI Inventory Generation (AAP 2.6)

New in AAP 2.6 — AI-assisted inventory from infrastructure discovery:

# AI scans your cloud accounts and generates:
all:
  children:
    aws_us_east:
      hosts:
        web-prod-01:
          ansible_host: 10.0.1.10
          instance_type: t3.large
          role: webserver
        db-prod-01:
          ansible_host: 10.0.2.10
          instance_type: r6g.xlarge
          role: database
    azure_westeurope:
      hosts:
        api-prod-01:
          ansible_host: 10.1.1.10
          vm_size: Standard_D4s_v3
          role: api

What AI Can't Do (Yet)

  1. Understand your infrastructure — It doesn't know your network topology, security requirements, or compliance needs
  2. Make architectural decisions — "Should I use roles or collections?" requires context AI doesn't have
  3. Handle edge cases — The 20% of automation work that requires domain expertise
  4. Test in your environment — Generated playbooks need testing against your actual hosts
  5. Replace human review — Every AI-generated playbook needs a human to verify security, idempotency, and correctness

Practical Recommendations

Use AI For

  • ✅ Boilerplate generation (save 30-50% typing time)
  • ✅ Discovering module parameters you didn't know existed
  • ✅ Initial drafts of standard patterns (install, configure, deploy)
  • ✅ Error diagnosis and suggested fixes
  • ✅ Converting shell scripts to Ansible playbooks
  • ✅ Generating documentation from playbooks

Don't Use AI For

  • ❌ Security-critical playbooks without review
  • ❌ Production deployment without testing
  • ❌ Anything involving secrets/credentials
  • ❌ Replacing understanding of Ansible fundamentals
  • ❌ Complex multi-play orchestration (it loses context)

The 2026 AI + Ansible Workflow

1. Human defines intent → "Deploy app v2.5 with zero downtime"
2. AI generates draft playbook → First pass, maybe 80% correct
3. Human reviews + fixes → Security, idempotency, edge cases
4. ansible-lint validates → Catches deprecated patterns
5. Molecule tests → Runs against test infrastructure
6. Human approves → Merge to main
7. AAP executes → With AI monitoring for anomalies

AI doesn't replace Ansible expertise — it amplifies it. The engineer who understands both Ansible and AI capabilities will be 3-5x more productive than either alone.

See also: Bring Your Own Knowledge to Ansible Lightspeed: Custom RAG Pipeline for AAP 2.7

FAQ

Is Ansible Lightspeed free?

Lightspeed is included with Red Hat Ansible Automation Platform subscriptions. A limited free tier is available through the VS Code extension for personal use with an Ansible community license.

Can AI generate safe, production-ready playbooks?

Not without human review. AI-generated playbooks commonly miss idempotency guards, security best practices (no_log), and environment-specific edge cases. Treat AI output as a first draft, not a finished product.

Will AI replace Ansible engineers?

No. AI automates the repetitive 80% (boilerplate, standard patterns) but the valuable 20% — architecture, security, debugging, and domain expertise — still requires human judgment. AI makes good engineers faster, not engineers unnecessary.

Should I learn Ansible if AI can generate playbooks?

Absolutely. You can't effectively review, debug, or improve AI-generated playbooks without understanding Ansible fundamentals. AI is a tool that multiplies your existing skills.

Conclusion

AI in 2026 makes Ansible easier to write but doesn't change what you need to know. Use Lightspeed/Copilot for boilerplate, MCP for AI-agent integration, and your brain for everything that matters — security, architecture, and reliability. The best automation engineers use AI as a force multiplier, not a replacement.

See also: AI-Assisted Inventory Generation in AAP 2.6 — Developer Preview

Category: installation

Browse all Ansible tutorials · AnsiblePilot Home