39 lines
1.1 KiB
ReStructuredText
39 lines
1.1 KiB
ReStructuredText
``profile::ssh_client``
|
|
=======================
|
|
|
|
This profile configures '/etc/ssh/ssh_known_hosts' :manpage:`sshd(8)`.
|
|
PSI CA key is added to the 'ssh_known_hosts', in this manner we allow
|
|
PSI servers to SSH to this host.
|
|
|
|
|
|
Parameters
|
|
----------
|
|
|
|
====================== ======== =============================================
|
|
**Name** **Type** **Default**
|
|
---------------------- -------- ---------------------------------------------
|
|
allowed_hosts string '\*.psi.ch'
|
|
canonicalize_hostname bool false
|
|
forward_x11 bool
|
|
====================== ======== =============================================
|
|
|
|
|
|
``allowed_hosts``
|
|
~~~~~~~~~~~~~~~~~
|
|
|
|
A string specifying which hosts are allowed to SSH to this machine. By default,
|
|
all PSI hosts will be able to connect.
|
|
|
|
|
|
``canonicalize_hostname``
|
|
~~~~~~~~~~~~~~~~~~~~~~~~~
|
|
|
|
Determines whether or not hostnames are canonicalized for ``psi.ch``. See
|
|
:manpage:`ssh_config(5)` for details.
|
|
|
|
|
|
``foward_x11``
|
|
~~~~~~~~~~~~~~
|
|
|
|
Determines whether ``ForwardX11`` and ``ForwardX11Trusted`` should be enabled.
|