diff options
author | Lars Wirzenius <liw@liw.fi> | 2022-08-03 09:59:27 +0300 |
---|---|---|
committer | Lars Wirzenius <liw@liw.fi> | 2022-08-03 09:59:27 +0300 |
commit | 6d86369e9a9c3a0b136766efa3283288e2f90760 (patch) | |
tree | a28ad17390a93f4dcf1865a12b19aece03677f44 | |
parent | a1ff7bdea16a006fb9a882fde204a300cdaf3af2 (diff) | |
download | ansibleness-6d86369e9a9c3a0b136766efa3283288e2f90760.tar.gz |
stamina: set host key and cert and user CA
Sponsored-by: author
-rw-r--r-- | ansible/stamina.yml | 6 |
1 files changed, 6 insertions, 0 deletions
diff --git a/ansible/stamina.yml b/ansible/stamina.yml index 024ad39..44ebde9 100644 --- a/ansible/stamina.yml +++ b/ansible/stamina.yml @@ -2,6 +2,7 @@ remote_user: root roles: - sane_debian_system + - sshd - ssd - comfortable-debian-system - self-updating-system @@ -173,3 +174,8 @@ smarthost: pieni.net smarthost_user: pienirelay smarthost_password: "{{ lookup('pipe', 'pass show pieni.net/pienirelay') }}" + + sshd_version: 1 + sshd_host_key: "{{ lookup('pipe', 'pass ssh/host/stamina') }}" + sshd_host_cert: "{{ lookup('pipe', 'sshca host certify liw.fi/ca/host/v3 stamina') }}" + sshd_user_ca_pub: "{{ lookup('pipe', 'sshca ca public-key liw.fi/ca/user/v3') }}" |