dustin/configpolicy
1
1
Fork 0
Code Issues Releases Activity

pyrocufflink: Set root password and SSH keys

Browse Source 
1. Set a password for *root* on all machines (useful for logging in via
   serial console if network is down)
2. Set an authorized SSH key for root on all machines:

   * For Fedora 34, use my FIDO2 security token key
   * For all other hosts, use my ED25519 key
This commit is contained in:
Dustin
2021-10-16 15:40:20 -05:00
parent d6fff04985
commit ce0dac983f
2 changed files with 22 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
group_vars/pyrocufflink/main.yml
View File

@@ -4,3 +4,10 @@ samba_use_winbind: true
pam_winbind: true
nss_winbind: true
pam_mkhomedir: true
root_authorized_keys: >-
{% if ansible_distribution == "Fedora" and ansible_distribution_version|int >= 34 %}
sk-ssh-ed25519@openssh.com AAAAGnNrLXNzaC1lZDI1NTE5QG9wZW5zc2guY29tAAAAINZCN2cxMDwedJ1Ke23Z3CZRcOYjqW8fFqsooRus7RK0AAAABHNzaDo= dustin@rosalina.pyrocufflink.blue
{% else %}
ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJsL5fSylmiJmBtW0DH/viAAmtU2E/2M17GPvysiyRs+ dustin@rosalina
{% endif %}