Common role for securing and configuring servers. This is currently only written for CentOS 7.x.
None
This defaults to 'default'. The options can be found in the /etc/yum/yum-cron.conf
Default template. Overide it if you would like to use your own.
defaults to /etc/fail2ban/jail.d/00-common-role.local
defaults to 3600
defaults to 'iptables-multiport'
default template. overide if you would like to use your own.
list that defaults to [22].
list that defaults to []
when set will change the root password
defaults to []
common_user_list:
- username: foo
groups:
- bar
key: ssh_public_key
defaults to []
common_sudoers_groups:
- name: bar
nopasswd: true
nopasswd is optional and defaults to false.
None
---
- hosts: all
become: yes
vars:
- common_root_password: "{{ 'secure' | password_hash('sha512', 'MySalt') }}"
- common_user_list:
- username: foo
groups:
- bar
key: https://github.com/foo.keys
- common_sudoers_groups:
- name: bar
nopassword: true
roles:
- common
BSD, MIT