initial config for thetys

author: Christian Pointner <equinox@spreadspace.org> 2017-12-10 03:10:30 +0100
committer: Christian Pointner <equinox@spreadspace.org> 2017-12-10 03:10:30 +0100
commit: 84667fd186fc2fe72d44afd1a595112b5adf54db (patch)
tree: 8cd88603de0c14f926d5e2cac523c4d255a4a5a3 /roles/sshserver
parent: added very basic docker and kubernetes roles (diff)
1 files changed, 12 insertions, 0 deletions
diff --git a/roles/sshserver/tasks/main.yaml b/roles/sshserver/tasks/main.yaml
index d2c5c9f0..fd92f12d 100644
--- a/roles/sshserver/tasks/main.yaml
+++ b/roles/sshserver/tasks/main.yaml
@@ -25,3 +25,15 @@
     regexp: "^AllowUsers"
     line: "AllowUsers {{ ' '.join([ 'root' ] | union(sshserver_allowusers_group | default([])) | union(sshserver_allowusers_host | default([]))) }}"
   notify: restart ssh
+
+- name: install ssh keys for root
+  authorized_key:
+    user: root
+    key: "{{ sshserver_root_keys }}"
+    exclusive: yes
+
+- name: delete root password
+  user:
+    name: root
+    password: "!"
+
author	Christian Pointner <equinox@spreadspace.org>	2017-12-10 03:10:30 +0100
committer	Christian Pointner <equinox@spreadspace.org>	2017-12-10 03:10:30 +0100
commit	84667fd186fc2fe72d44afd1a595112b5adf54db (patch)
tree	8cd88603de0c14f926d5e2cac523c4d255a4a5a3 /roles/sshserver
parent	added very basic docker and kubernetes roles (diff)