1 files changed, 6 insertions, 0 deletions

diff --git a/ansible/http.liw.fi.yml b/ansible/http.liw.fi.yml
index dde7574..ed409ff 100644
--- a/ansible/http.liw.fi.yml
+++ b/ansible/http.liw.fi.yml
@@ -2,6 +2,7 @@
   remote_user: root
   roles:
     - role: sane_debian_system
+    - role: sshd
     - role: unix_users
     - role: apache_server
     - role: comfortable-debian-system
@@ -282,3 +283,8 @@
         owner: liw
         ownermail: liw@liw.fi
         letsencrypt: no
+
+    sshd_version: 1
+    sshd_host_key: "{{ lookup('pipe', 'sshca host private-key http.liw.fi') }}"
+    sshd_host_cert: "{{ lookup('pipe', 'sshca host certify liw.fi/ca/host/v4 http.liw.fi') }}"
+    sshd_user_ca_pub: "{{ lookup('pipe', 'sshca ca public-key liw.fi/ca/user/v3') }}"