libretic/ansible-sshd
6
0
Fork 0
mirror of https://github.com/willshersystems/ansible-sshd synced 2024-11-14 15:30:18 +01:00
Code Issues Projects Releases Packages Wiki Activity
ansible-sshd/examples/example-root-login.yml

17 lines
533 B
YAML
Raw Normal View History

examples: Provide simple example playbook
2020-12-15 15:00:38 +01:00
---
ansible-lint - align with current Ansible recommendations Use `true/false` instead of `yes/no` Ensure use of FQCN for builtin modules Use correct spacing in Jinja expressions All tasks and plays must have a `name`, and the `name` string must begin with an uppercase letter Use `ansible.posix.mount` instead of `ansible.builtin.mount` Use `set -o pipefail` with `shell` module where supported by the platform shell Signed-off-by: Rich Megginson <rmeggins@redhat.com>
2023-04-10 22:19:29 +02:00
- name: Manage root login
hosts: all
examples: Provide simple example playbook
2020-12-15 15:00:38 +01:00
tasks:
ansible-lint - align with current Ansible recommendations Use `true/false` instead of `yes/no` Ensure use of FQCN for builtin modules Use correct spacing in Jinja expressions All tasks and plays must have a `name`, and the `name` string must begin with an uppercase letter Use `ansible.posix.mount` instead of `ansible.builtin.mount` Use `set -o pipefail` with `shell` module where supported by the platform shell Signed-off-by: Rich Megginson <rmeggins@redhat.com>
2023-04-10 22:19:29 +02:00
- name: Configure sshd to prevent root and password login except from particular subnet
ansible.builtin.include_role:
name: ansible-sshd
vars:
sshd:
# root login and password login is enabled only from a particular subnet
PermitRootLogin: false
PasswordAuthentication: false
Match:
- Condition: "Address 192.0.2.0/24"
PermitRootLogin: true
PasswordAuthentication: true
Reference in a new issue Copy permalink