1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29 #
# !!! This file is managed by Ansible !!!
#
Port {{ services.openssh.port | default(22) }}
{% if services.openssh.permitRootLogin is true %}
PermitRootLogin prohibit-password
{% else %}
PermitRootLogin no
{% endif %}
{% if services.openssh.passwordAuthentication is true %}
PasswordAuthentication yes
{% else %}
PasswordAuthentication no
{% endif %}
AuthorizedKeysFile .ssh/authorized_keys
ChallengeResponseAuthentication no
UsePAM yes
Subsystem sftp /usr/lib/ssh/sftp-server
{% if services.openssh.extraConfig is defined %}
{{ services.openssh.extraConfig }}
{% endif %}