Skip to content

cdriehuys/ansible-role-lock-root

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

36 Commits
defaults
defaults
 
 
handlers
handlers
 
 
meta
meta
 
 
tasks
tasks
 
 
templates
templates
 
 
tests
tests
 
 
vars
vars
 
 
.bumpversion.cfg
.bumpversion.cfg
 
 
.gitignore
.gitignore
 
 
.travis.yml
.travis.yml
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

Role Name

Create a user for ansible, and lock down access to the root user.

Requirements

None.

Role Variables

The following are the variables used by the role and their defaults.

admin_user: ansible
admin_user_shell: /bin/bash
admin_user_public_keys:
  - ~/.ssh/id_rsa.pub

It is crucial that a valid SSH key be added for the user since that is the only way to login as the user.

Dependencies

None.

Example Playbook

Running the role is fairly straightforward. The only issue is that if access to the root user has already been disabled, the role might fail to connect if run again.

- hosts: all
  remote_user: root
  roles:
     - { role: cdriehuys.lock-root, admin_user: ansible }

License

MIT

Author Information

Chathan Driehuys (cdriehuys@gmail.com)

About

Ansible role to lock down root access.

Topics

security ansible root

Resources

Readme

License

MIT license
Activity

Stars

0 stars

Watchers

1 watching

Forks

1 fork
Report repository

Releases

3 tags

Packages

No packages published

Languages