Browse Source

fix

master
Vladimir Smagin 2 years ago
parent
commit
d4530efd82
1 changed files with 5 additions and 5 deletions
  1. +5
    -5
      readme.md

+ 5
- 5
readme.md View File

@ -1,17 +1,17 @@
# Ansible centralized keys management
Dicts in parent group merges with dicts in child groups.
Installation: ```git clone https://git.blindage.org/21h/ansible-library.git -b centralized-keys```
Warning! Playbook will delete all public keys in root's ```.ssh/authorized_keys``` file and setup own **super** key, only after this public keys in group_vars and host_vars will be added into assigned users ```.ssh/authorized_keys``` files.
Now you can configure your security. Remember that dicts in parent group merges with dicts in child groups. Warning! Playbook will delete all public keys in root's ```.ssh/authorized_keys``` file and setup own **super** key, only after this public keys in group_vars and host_vars will be added into assigned users ```.ssh/authorized_keys``` files. If you do not want to lost already installed pubkeys add all of them before playbook first run.
**Security issue!** You need to generate your own super key! Run ```ssh-keygen -f superkey``` and replace keys in ```secret/``` directory.
Infrastructure:
```
--[ hetzner ]--\
|- hetzner-balancers
\- hetzner-nodes
-- hetzner --|
|- hetzner-balancers
|- hetzner-nodes
```
All servers will be available to the administrator and assistant, servers must have own internal key for files copying. Configuring parent ```hetzner```group:


Loading…
Cancel
Save