Ansible playbook that you can use to control ssh access to your linux servers. You can install or remove keys, tune sshd options and install additional software.
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
 
 

21 lines
883 B

access_list:
admin: { keypath: "../keys/admin.pub", username: "root" }
techguy: { keypath: "../keys/techguy.pub", username: "root" }
# key requied by ssh tunnel
secret_list:
interserver: { keypath: "../keys/interserver.pem", username: "tunneluser" }
# You can get fingerprint by simple command:
# ssh-keyscan blindage.org
ssh_tunnels:
CLICKHOUSE8123:
SSH_TUNNEL_LOCAL_HOST: "127.0.0.1"
SSH_TUNNEL_LOCAL_PORT: 8123
SSH_TUNNEL_REMOTE_USER: "tunneluser"
SSH_TUNNEL_REMOTE_HOST: "database.myserver.ru"
SSH_TUNNEL_REMOTE_HOST_FINGERPRINT: "|1|yt/vdfskjgklfjlLKJLKJKJLlkjldksjfjuxzngXn5B3cxKltgMGrN2U= ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyfgdfkjlkjLKJLKJLKJLKJLKJJKTUOIWPEORIOPopopiuopiuxdfyG/h9FpdfLZudbGkPdhDdXRZGKKuGl4koqki/XdT1LbQ="
SSH_TUNNEL_REMOTE_PORT: 8123
SSH_TUNNEL_KEY: "/home/tunneluser/.ssh/interserver.pem"