evolix/ansible-roles
22
2
Fork 2
Code Issues 61 Pull requests 18 Releases 32 Wiki Activity

No need to add individual users, a group is enough

Browse source
This commit is contained in:
Jérémy Lecour 2017-10-08 14:23:21 +02:00
parent a07d1d873a
commit 8c1024c23c
1 changed files with 8 additions and 7 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

15
evolinux-users/tasks/ssh.yml
View file

@ -59,13 +59,14 @@
register: grep_matchuser_ssh
check_mode: no
- name: "Add Match User sshd directive for '{{ user.name }}'"
lineinfile:
dest: /etc/ssh/sshd_config
line: "\nMatch User {{ user.name }}\n PasswordAuthentication no"
validate: '/usr/sbin/sshd -T -f %s'
notify: reload sshd
when: grep_matchuser_ssh.rc != 0
# - name: "Add Match User sshd directive for '{{ user.name }}'"
# lineinfile:
# dest: /etc/ssh/sshd_config
# line: "\nMatch User {{ user.name }}\n PasswordAuthentication no"
# insertbefore: "# BEGIN EVOLINUX PASSWORD RESTRICTIONS"
# validate: '/usr/sbin/sshd -T -f %s'
# notify: reload sshd
# when: grep_matchuser_ssh.rc != 0
- name: "Modify Match User's sshd directive for '{{ user.name }}'"
replace: