Ansible playbook that you can use to control ssh access to your linux servers. You can install or remove keys, tune sshd options and install additional software.
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
 
 

22 lines
952 B

# If you want to disable key just add key_state: "absent"
# Example: stupid_manager: { keypath: "../keys/stupid_manager.pub", username: "ubuntu", key_state: "absent" }
access_list:
git: { keypath: "../keys/project-git.pub", username: "root" }
dev1: { keypath: "../keys/developer1.pub", username: "developer" }
dev2: { keypath: "../keys/developer2.pub", username: "developer" }
# disable fired employer
dev3: { keypath: "../keys/developer3.pub", username: "developer", key_state: "absent" }
# remove user from OS, no managers on servers! fuck them all!
dumb_manager: { keypath: "../keys/manager.pub", username: "manager", state: "absent" }
# Set path to sshd config
# Default: /etc/ssh/sshd_config
sshd_config_path: "/var/local/etc/ssh/sshd_config"
# Here you can change sshd parameters
# change defaults here roles/ssh_config/defaults/main.yml
sshd_options:
# allow password auth instead of defaults
PasswordAuthentication: "yes"