瀏覽代碼
Merge pull request #44 from elfixit/master
add options to give a key size to generate_keytags/v0.41.0
Nitin Madhok
9 年之前
+ 5
- 0
openssh/config.sls
查看文件
| @@ -17,7 +17,12 @@ sshd_config: | |||
| {% if salt['pillar.get']('openssh:generate_' ~ keyType ~ '_keys', False) %} | |||
| ssh_generate_host_{{ keyType }}_key: | |||
| cmd.run: | |||
| {%- if salt['pillar.get']('openssh:generate_' ~ keyType ~ '_size', False) %} | |||
| {%- set keySize = salt['pillar.get']('openssh:generate_' ~ keyType ~ '_size', 4096) %} | |||
| - name: ssh-keygen -t {{ keyType }} -b {{ keySize }} -N '' -f /etc/ssh/ssh_host_{{ keyType }}_key | |||
| {%- else %} | |||
| - name: ssh-keygen -t {{ keyType }} -N '' -f /etc/ssh/ssh_host_{{ keyType }}_key | |||
| {%- endif %} | |||
| - creates: /etc/ssh/ssh_host_{{ keyType }}_key | |||
| - user: root | |||
+ 1
- 0
pillar.example
查看文件
| @@ -91,6 +91,7 @@ openssh: | |||
| ecdsa-sha2-nistp256 NOT_DEFINED | |||
| generate_rsa_keys: False | |||
| generate_rsa_size: 4096 | |||
| absent_rsa_keys: False | |||
| provide_rsa_keys: False | |||
| rsa: | |||
Loading…