solace: install SSH host key and cerftificate

Sponsored-by: author
author: Lars Wirzenius <liw@liw.fi> 2022-08-03 10:06:12 +0300
committer: Lars Wirzenius <liw@liw.fi> 2022-08-03 10:06:12 +0300
commit: 36ff4888a46a6efbe93ac6eb6cadf940ca7fd16d (patch)
tree: 84dd8fd5882da0adf9cb12bacf20a42eb2add405
parent: 6d86369e9a9c3a0b136766efa3283288e2f90760 (diff)
download: ansibleness-36ff4888a46a6efbe93ac6eb6cadf940ca7fd16d.tar.gz
1 files changed, 6 insertions, 0 deletions
diff --git a/ansible/solace.yml b/ansible/solace.yml
index 58d6b19..af7730f 100644
--- a/ansible/solace.yml
+++ b/ansible/solace.yml
@@ -3,6 +3,7 @@
   become: no
   roles:
     - role: sane_debian_system
+    - role: sshd
     - role: ssd
     - role: comfortable-debian-system
     - role: chaoskey-host
@@ -212,3 +213,8 @@
       tokei \
       zoxide \
       ytop
+
+    sshd_version: 1
+    sshd_host_key: "{{ lookup('pipe', 'pass ssh/host/solace') }}"
+    sshd_host_cert: "{{ lookup('pipe', 'sshca host certify liw.fi/ca/host/v3 solace') }}"
+    sshd_user_ca_pub: "{{ lookup('pipe', 'sshca ca public-key liw.fi/ca/user/v3') }}"
author	Lars Wirzenius <liw@liw.fi>	2022-08-03 10:06:12 +0300
committer	Lars Wirzenius <liw@liw.fi>	2022-08-03 10:06:12 +0300
commit	36ff4888a46a6efbe93ac6eb6cadf940ca7fd16d (patch)
tree	84dd8fd5882da0adf9cb12bacf20a42eb2add405
parent	6d86369e9a9c3a0b136766efa3283288e2f90760 (diff)
download	ansibleness-36ff4888a46a6efbe93ac6eb6cadf940ca7fd16d.tar.gz