Ansible module for creating and rotating SSH keys on fleets of servers. The work was inspired (though dramatically altered and upgraded) by an article about the topic authored (posted online) by Jesse Keating, June 7, 2014.
This role currently supports only Debian/Ubuntu distros.
Available variables are listed below, along with default values (see defaults/main.yml):
sshkeys_user: vmware
The userid (login name) of the user that is the owner of the home directory in which new keys should be placed. This also is the user for which the authorized_keys file will be updated with the new key.
new_priv_key
Full path to where any private SSH keys, when generated, should be stored as operatins take place to distribute its public side.
new_pub_key
Full path to where new public SSH keys, when generated, should be stored as operatins take place to distribute its public side. Defaults to "{{ new_priv_key }}.pub" and that's sufficient for the vast majority of applications.
---
- hosts: sshkeys
sudo: True
connection: local
roles:
- sshkeys
vars:
- packate: False
Copyright 2015 VMware, Inc.
Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at
http://www.apache.org/licenses/LICENSE-2.0
Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.
This role was created in 2015 by Tom Hite / VMware.