diff options
Diffstat (limited to 'roles')
-rw-r--r-- | roles/sshd/defaults/main.yml | 2 | ||||
-rw-r--r-- | roles/sshd/tasks/main.yml | 4 |
2 files changed, 4 insertions, 2 deletions
diff --git a/roles/sshd/defaults/main.yml b/roles/sshd/defaults/main.yml new file mode 100644 index 00000000..8b25827b --- /dev/null +++ b/roles/sshd/defaults/main.yml @@ -0,0 +1,2 @@ +--- +ssh_allow_any_user: False diff --git a/roles/sshd/tasks/main.yml b/roles/sshd/tasks/main.yml index a9393cfd..5eb15081 100644 --- a/roles/sshd/tasks/main.yml +++ b/roles/sshd/tasks/main.yml @@ -27,7 +27,7 @@ notify: restart ssh - name: limit allowed users - when: ssh_allow_any_user is undefined or not ssh_allow_any_user + when: not ssh_allow_any_user lineinfile: dest: /etc/ssh/sshd_config regexp: "^AllowUsers\\s" @@ -35,7 +35,7 @@ notify: restart ssh - name: allow any user - when: ssh_allow_any_user is defined and ssh_allow_any_user + when: ssh_allow_any_user lineinfile: dest: /etc/ssh/sshd_config regexp: "^AllowUsers\\s" |