add permit root login

e1c2bc16 · nanahira · 31595d95 · e1c2bc16
Commit e1c2bc16 authored Mar 03, 2020 by nanahira
Hide whitespace changes
Inline Side-by-side

Showing with 7 additions and 0 deletions

tasks/sshd_config.yml tasks/sshd_config.yml +7 -0

No files found.
--- a/tasks/sshd_config.yml
+++ b/tasks/sshd_config.yml
@@ -7,6 +7,13 @@
    backrefs: true
  when: "(ansible_user_id == 'root' or ansible_user_id == 'nanahira' or ansible_user_id == 'mycard' or ansible_user_id == 'zh99998') and not allow_password" # Only self-managed servers
  notify: restart_sshd
+- name: permit root login
+  lineinfile:
+    path: /etc/ssh/sshd_config
+    regexp: '^#?PermitRootLogin (no|false|prohibit-password).*$'
+    line: 'PermitRootLogin yes'
+    backrefs: true
+  when: "ansible_user_id == 'root' and allow_password"
 - name: sshd config GSSAPIAuthentication
  become: true
  lineinfile: