zimoch/Controls-docs
0
0
Fork 0
forked from Controls/gitea-pages
Code Pull Requests Actions Activity

document ssh_server::enable_public_key

Browse Source
This commit is contained in:
buchel_k
2022-10-05 16:00:01 +02:00
parent a3b2ce5fe6
commit e5ade713a9
1 changed files with 8 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
admin-guide/puppet/profiles/ssh_server.rst
+8
View File
@@ -10,12 +10,20 @@ Parameters
==================== ======== =============================================
**Name** **Type** **Default**
-------------------- -------- ---------------------------------------------
enable_public_key bool hiera('ssh_server::enable_public_key', true)
enable_gssapi bool hiera('ssh_server::enable_gssapi')
permit_root_login string hiera('ssh_server::permit_root_login')
trusted_user_ca_keys list hiera('ssh_server::trusted_user_ca_keys', [])
user_ca_keys hash hiera('ssh_server::user_ca_keys', {})
==================== ======== =============================================
``enable_gssapi``
~~~~~~~~~~~~~~~~~
A boolean determining whether public key authentication is enabled or not for normal users.
Note that ``root`` is still allowed to connect using public key authentication. Here you may block root login with ``ssh_server::permit_root_login`` or restrict from where to allow root login (see bastion hosts ``aaa::bastions`` and ``aaa::use_bastions``).
``enable_gssapi``
~~~~~~~~~~~~~~~~~