gregandev/rpi-ansible
1
0
Fork 0
mirror of https://github.com/ruanbekker/rpi-ansible.git synced 2025-04-20 17:21:44 +02:00
Code Issues Projects Releases Wiki Activity

update docs

Browse Source
This commit is contained in:
Glenn K. Lockwood 2020-07-26 20:18:23 -07:00
parent 53fe87bf1d
commit 0fd025ee6f
1 changed files with 16 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

18
README.md
View File

@ -63,11 +63,25 @@ to ensure that it does not lock you out of your Raspberry Pi.
This playbook can install ssh host keys. To do so, This playbook can install ssh host keys. To do so,
1. drop the appropriate `ssh_host_*_key` files into `roles/common/files/etc/ssh/` 1. Drop the appropriate `ssh_host_*_key` files into `roles/common/files/etc/ssh/`
2. rename each file from `ssh_host_*_key` to `ssh_host_*_key.hostname` where 2. Rename each file from `ssh_host_*_key` to `ssh_host_*_key.hostname` where
`hostname` matches the `hostname` in `roles/common/vars/main.yml` to which `hostname` matches the `hostname` in `roles/common/vars/main.yml` to which
the hostkey should be deployed the hostkey should be deployed
3. `ansible-vault encrypt roles/common/files/etc/ssh/ssh_host_*_key.*` 3. `ansible-vault encrypt roles/common/files/etc/ssh/ssh_host_*_key.*`
4. Add these files to `roles/common/vars/main.yml`
The format expected in `roles/common/vars/main.yml` is something like
---
macaddrs:
dc:a6:32:8c:8a:53:
hostname: "cloverdale"
# ...
ssh_host_key_files:
- etc/ssh/ssh_host_rsa_key.cloverdale
- etc/ssh/ssh_host_dsa_key.cloverdale
- etc/ssh/ssh_host_ecdsa_key.cloverdale
- etc/ssh/ssh_host_ed25519_key.cloverdale
## Acknowledgment ## Acknowledgment