fix: use new SSH CA for hosts

This one doesn't require pressing a U2F token button five times per host, because Ansible evaluates variable values at the time of use. Sponsored-by: author
author: Lars Wirzenius <liw@liw.fi> 2022-08-28 09:46:48 +0300
committer: Lars Wirzenius <liw@liw.fi> 2022-08-28 09:46:48 +0300
commit: 19f5e9a6fe86fce2f1918024ef797de0e7b569ed (patch)
tree: 9bf489353104749580d165c781093142ea6dd5d3 /ansible/qotom.yml
parent: e49a4adf42b8f11877eb7033092d2a1a0a3a275d (diff)
download: ansibleness-19f5e9a6fe86fce2f1918024ef797de0e7b569ed.tar.gz
1 files changed, 1 insertions, 1 deletions
diff --git a/ansible/qotom.yml b/ansible/qotom.yml
index 160f449..8a1cb9f 100644
--- a/ansible/qotom.yml
+++ b/ansible/qotom.yml
@@ -21,6 +21,6 @@
 
     sshd_version: 1
     sshd_host_key: "{{ lookup('pipe', 'sshca host private-key qotom') }}"
-    sshd_host_cert: "{{ lookup('pipe', 'sshca host certify liw.fi/ca/host/v3 qotom') }}"
+    sshd_host_cert: "{{ lookup('pipe', 'sshca host certify liw.fi/ca/host/v4 qotom') }}"
     sshd_user_ca_pub: "{{ lookup('pipe', 'sshca ca public-key liw.fi/ca/user/v3') }}"
author	Lars Wirzenius <liw@liw.fi>	2022-08-28 09:46:48 +0300
committer	Lars Wirzenius <liw@liw.fi>	2022-08-28 09:46:48 +0300
commit	19f5e9a6fe86fce2f1918024ef797de0e7b569ed (patch)
tree	9bf489353104749580d165c781093142ea6dd5d3 /ansible/qotom.yml
parent	e49a4adf42b8f11877eb7033092d2a1a0a3a275d (diff)
download	ansibleness-19f5e9a6fe86fce2f1918024ef797de0e7b569ed.tar.gz