ReleaseEngineering/PuppetAgain/Modules/ssh

< ReleaseEngineering‎ | PuppetAgain‎ | Modules
Revision as of 19:31, 14 August 2012 by Djmitche (talk | contribs) (Created page with "This module configures both the client and server sides of SSH = ssh = The global portion of the configuration is in the 'ssh' class, which is included at the top level. This: ...")
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

This module configures both the client and server sides of SSH

ssh

The global portion of the configuration is in the 'ssh' class, which is included at the top level. This:

  • puts known hosts into the global file
  • adds global ssh configuration (currently empty)
  • starts sshd
  • adds global sshd configuration

Note that all known hosts are added to the global file. There's no good reason to *not* add known hosts to this list, or to only add some hosts on some systems.

ssh::userconfig

This define sets up SSH configuration for a specific user (the namevar). Options:

config
Additional configuration to add to .ssh/config. This can be generated from a template if necessary.
authorized_keys
A list of key names that should be authorized for this account. The relevant keys will be looked up in the hash in modules/ssh/manifests/keys.pp.

This class is included by the users::* classes.