monitored/tasks/ssh.yml

---
- name: Create dot-SSH directory for monitoring user
  file:
    path: "{{ monitored_homedir }}/.ssh/"
    state: directory
    owner: "{{ monitored_user }}"
    group: "{{ monitored_group }}"
    mode: 0700

- name: Copy SSH authorized_keys for monitoring user
  authorized_key:
    user: "{{ monitored_user }}"
    key: "{{ lookup('file', item) }}"
    key_options: 'no-agent-forwarding,no-port-forwarding,no-X11-forwarding,no-pty{% if monitored_ssh_key_wrapper %},command="{{ monitored_ssh_key_wrapper }}"{% endif %}'
  with_items: "{{ monitored_ssh_key_files }}"

- name: Copy SSH wrapper
  copy:
    src: "{{ monitored_ssh_key_wrapper_src }}"
    dest: "{{ monitored_ssh_key_wrapper }}"
    owner: "{{ monitored_ssh_key_wrapper_owner }}"
    group: "{{ monitored_group }}"
    mode: "{{ monitored_ssh_key_wrapper_mode }}"
    backup: yes
  when: monitored_ssh_key_wrapper_src|default(null)


- name: Instal additional packages for SSH monitoring
  package:
    name: "{{ item }}"
    state: latest
  with_items: "{{ monitored_packages_additional_ssh }}"
  when: monitored_packages_additional_ssh
Initial commit on request, not tested! 2016-12-14 17:57:19 +00:00			`---`
			`- name: Create dot-SSH directory for monitoring user`
			`file:`
			`path: "{{ monitored_homedir }}/.ssh/"`
			`state: directory`
			`owner: "{{ monitored_user }}"`
			`group: "{{ monitored_group }}"`
			`mode: 0700`

			`- name: Copy SSH authorized_keys for monitoring user`
			`authorized_key:`
			`user: "{{ monitored_user }}"`
			`key: "{{ lookup('file', item) }}"`
			`key_options: 'no-agent-forwarding,no-port-forwarding,no-X11-forwarding,no-pty{% if monitored_ssh_key_wrapper %},command="{{ monitored_ssh_key_wrapper }}"{% endif %}'`
Ansible 2.x fixes 2018-03-13 18:10:08 +00:00			`with_items: "{{ monitored_ssh_key_files }}"`
Initial commit on request, not tested! 2016-12-14 17:57:19 +00:00
			`- name: Copy SSH wrapper`
			`copy:`
			`src: "{{ monitored_ssh_key_wrapper_src }}"`
SSH wrapper more configurable 2018-03-13 19:43:00 +00:00			`dest: "{{ monitored_ssh_key_wrapper }}"`
			`owner: "{{ monitored_ssh_key_wrapper_owner }}"`
			`group: "{{ monitored_group }}"`
			`mode: "{{ monitored_ssh_key_wrapper_mode }}"`
Ansible 2.x fixes 2018-03-13 18:10:08 +00:00			`backup: yes`
			`when: monitored_ssh_key_wrapper_src\|default(null)`
Initial commit on request, not tested! 2016-12-14 17:57:19 +00:00
Additional package install via variables - monitored_packages_additional (both SSH and NRPE) - monitored_packages_additional_nrpe (NRPE only) - monitored_packages_additional_ssh (SSH only) 2018-04-22 12:14:03 +00:00
			`- name: Instal additional packages for SSH monitoring`
			`package:`
			`name: "{{ item }}"`
			`state: latest`
			`with_items: "{{ monitored_packages_additional_ssh }}"`
			`when: monitored_packages_additional_ssh`