19 lines
549 B
YAML
19 lines
549 B
YAML
---
|
|
- name: Add authorized keys for SSH access to accounts
|
|
ansible.posix.authorized_keys:
|
|
user: "{{ item[0] }}"
|
|
key: "{{ item[1] }}"
|
|
state: present
|
|
validate_certs: no
|
|
loop: "{{ pubkeys }}"
|
|
register: pubkeys_assigned
|
|
tags: ['default', 'assign_pubkeys']
|
|
- name: Disable SSH password authentication
|
|
copy:
|
|
src: sshd/nopass.conf
|
|
dest: /etc/ssh/sshd_config.d/nopass.conf
|
|
owner: "{{ root_acct }}"
|
|
group: "{{ root_acct }}"
|
|
force: yes
|
|
register: ssh_passauth_disabled
|
|
tags: ['default', 'disable_ssh_passauth'] |