Disallow Password Auth for SSH

main
Isabelle K 5 years ago
parent ef3346523d
commit b4ab97be5a
No known key found for this signature in database
GPG Key ID: E7FD228DE91AEB2B

@ -14,3 +14,5 @@
group: root
mode: 0644
when: motd_path is defined
- include: sshd.yml

@ -0,0 +1,14 @@
---
- name: Restrict SSH to public key authentication
lineinfile:
path: /etc/ssh/sshd_config
regexp: '^#?AuthenticationMethods '
line: 'AuthenticationMethods publickey'
service: name=sshd state=restarted
- name: Disable SSH password authentication
lineinfile:
path: /etc/ssh/sshd_config
regexp: '^#?PasswordAuthentication '
line: 'PasswordAuthentication no'
service: name=sshd state=restarted
Loading…
Cancel
Save