Skip to content

awx / unnactivate-ssh-root

Go to a project
Toggle navigation
Toggle navigation pinning
Switch branch/tag
main.yaml 639 Bytes
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 
---
- name: Desactivar acceso SSH como root
  hosts: all
  become: yes
  tasks:

    - name: Asegurar que 'PermitRootLogin no' esté en sshd_config
      lineinfile:
        path: /etc/ssh/sshd_config
        regexp: '^#?PermitRootLogin\s+.*'
        line: 'PermitRootLogin no'
        state: present
        backrefs: yes

    - name: Asegurar que 'UsePAM yes' esté en sshd_config
      lineinfile:
        path: /etc/ssh/sshd_config
        regexp: '^#?UsePAM\s+.*'
        line: 'UsePAM yes'
        state: present
        backrefs: yes

    - name: Reiniciar el servicio sshd
      service:
        name: sshd
        state: restarted