#######################################################################################################
This repository and the role associated are deprecated in favor of the Manala Ansible Collection
You will find informations on its usage on the collection repository
#######################################################################################################
❗ Report issues and send Pull Requests in the main Ansible Role repository ❗
This role will deal with the following configuration:
- Allow sudo authentication over ssh
- Enable/Disable the SSH daemon password authentication
- Set the SSH daemon accepted environment variables
- Set ssh know hosts
It's part of the Manala Ansible stack but can be used as a stand alone component.
None.
None.
Version 3.0.0 introduces few deprecations, but remains fully backward compatible.
Variables
manala_ssh_config_sshd_file
-> manala_ssh_server_config_file
manala_ssh_config_sshd_template
-> manala_ssh_server_config_template
manala_ssh_config_sshd
-> manala_ssh_server_config
manala_ssh_config_file
-> manala_ssh_client_config_file
manala_ssh_config_template
-> manala_ssh_client_config_template
manala_ssh_config
-> manala_ssh_client_config
Templates
config/*.j2
-> config/client/*.j2
config/sshd/*.j2
-> config/server/*.j2
Using ansible galaxy cli:
ansible-galaxy install manala.ssh
Using ansible galaxy requirements file:
- src: manala.ssh
Name | Type | Description |
---|---|---|
ssh reload |
Service | Restart ssh service |
Name | Default | Type | Description |
---|---|---|---|
manala_ssh_install_packages |
~ | Array | Dependency packages to install |
manala_ssh_install_packages_default |
['openssh-server'] | Array | Default dependency packages to install |
manala_ssh_server |
true | Boolean | Enable server |
manala_ssh_server_config_file |
'/etc/ssh/sshd_config' | String | Server configuration file path |
manala_ssh_server_config_template |
'config/server/[distribution]_[release].j2' | String | Server default configuration template path |
manala_ssh_server_config |
~ | Array/String | Server configuration directives |
manala_ssh_client_config_file |
'/etc/ssh/ssh_config' | String | Client configuration file path |
manala_ssh_client_config_template |
'config/client/[distribution]_[release].j2' | String | Client default configuration template path |
manala_ssh_client_config |
~ | Array/String | Client configuration directives |
manala_ssh_known_hosts |
[] | Array | Known hosts |
Use default debian templates (recommended)
manala_ssh_server_config_template: config/server/debian/sshd_config.j2
manala_ssh_client_config_template: config/client/debian/ssh_config.j2
Use dict parameters:
manala_ssh_client_config:
Host *:
SendEnv: LANG LC_* FOO
manala_ssh_server_config:
AcceptEnv: LANG LC_* FOO
Match User bar:
AcceptEnv: LANG LC_* BAR
Use raw config:
manala_ssh_client_config: |
Host *
SendEnv LANG LC_* FOO
manala_ssh_server_config: |
AcceptEnv LANG LC_* FOO
Match User bar
AcceptEnv LANG LC_* BAR
Use dict's array parameters (deprecated):
manala_ssh_client_config:
- Host *:
- SendEnv: LANG LC_* FOO
manala_ssh_server_config:
- AcceptEnv: LANG LC_* FOO
- Match User bar:
- AcceptEnv: LANG LC_* BAR
Known hosts
manala_ssh_known_hosts:
- github.com
- hosts: servers
roles:
- role: manala.ssh
MIT
Manala (http://www.manala.io/)