Ansible playbook that you can use to control ssh access to your linux servers. You can install or remove keys, tune sshd options and install additional software.
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
 
 

22 lines
883 B

  1. access_list:
  2. admin: { keypath: "../keys/admin.pub", username: "root" }
  3. techguy: { keypath: "../keys/techguy.pub", username: "root" }
  4. # key requied by ssh tunnel
  5. secret_list:
  6. interserver: { keypath: "../keys/interserver.pem", username: "tunneluser" }
  7. # You can get fingerprint by simple command:
  8. # ssh-keyscan blindage.org
  9. ssh_tunnels:
  10. CLICKHOUSE8123:
  11. SSH_TUNNEL_LOCAL_HOST: "127.0.0.1"
  12. SSH_TUNNEL_LOCAL_PORT: 8123
  13. SSH_TUNNEL_REMOTE_USER: "tunneluser"
  14. SSH_TUNNEL_REMOTE_HOST: "database.myserver.ru"
  15. SSH_TUNNEL_REMOTE_HOST_FINGERPRINT: "|1|yt/vdfskjgklfjlLKJLKJKJLlkjldksjfjuxzngXn5B3cxKltgMGrN2U= ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyfgdfkjlkjLKJLKJLKJLKJLKJJKTUOIWPEORIOPopopiuopiuxdfyG/h9FpdfLZudbGkPdhDdXRZGKKuGl4koqki/XdT1LbQ="
  16. SSH_TUNNEL_REMOTE_PORT: 8123
  17. SSH_TUNNEL_KEY: "/home/tunneluser/.ssh/interserver.pem"