---
- name: Create Windows group ansible
  become: true
  ansible.windows.win_group:
    name: 'Ansible'
    description: 'Group for Ansible Management'
    state: present

- name: create ansible User
  become: true
  ansible.windows.win_user:
    name: 'ansible'
    state: present
    password: "{{ lookup('community.general.passwordstore', win_base_init__pass_prefix + '/' + inventory_hostname + '/password create=true length=16 nosymbols=true')}}"
    account_disabled: false
    description: 'Account to run ansible commands at this WINDOWS host'
    groups_action: 'add'
    password_expired: false
    password_never_expires: true
    user_cannot_change_password: true
    groups:
      - 'Users'
      - 'Administrator'
      - 'Ansible'