37 lines
976 B
YAML
37 lines
976 B
YAML
---
|
|
- name: Ensure openssh-server is installed on Arch-based systems
|
|
ansible.builtin.package:
|
|
name: openssh
|
|
state: present
|
|
when: ansible_pkg_mgr == 'pacman'
|
|
|
|
- name: Ensure openssh-server is installed on non-Arch systems
|
|
ansible.builtin.package:
|
|
name: openssh-server
|
|
state: present
|
|
when: ansible_pkg_mgr != 'pacman'
|
|
|
|
- name: Ensure SSH service is enabled and running on Arch-based systems
|
|
ansible.builtin.service:
|
|
name: sshd
|
|
state: started
|
|
enabled: true
|
|
when: ansible_pkg_mgr == 'pacman'
|
|
|
|
- name: Ensure SSH service is enabled and running on non-Arch systems
|
|
ansible.builtin.service:
|
|
name: ssh
|
|
state: started
|
|
enabled: true
|
|
when: ansible_pkg_mgr != 'pacman'
|
|
|
|
- name: Ensure SSH server configuration is proper
|
|
ansible.builtin.template:
|
|
src: templates/sshd_config.j2
|
|
dest: /etc/ssh/sshd_config
|
|
owner: root
|
|
group: root
|
|
mode: "0644"
|
|
validate: "/usr/sbin/sshd -t -f %s"
|
|
notify: Restart SSH service
|