Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/budimanjojo/ansible-role-duossh

Role to configure SSH using Duo Security
https://github.com/budimanjojo/ansible-role-duossh

ansible duo duosecurity galaxy pamd role ssh

Last synced: 21 days ago
JSON representation

Role to configure SSH using Duo Security

Host: GitHub
URL: https://github.com/budimanjojo/ansible-role-duossh
Owner: budimanjojo
Created: 2021-08-17T08:54:00.000Z (over 3 years ago)
Default Branch: master
Last Pushed: 2024-10-15T23:22:33.000Z (about 1 month ago)
Last Synced: 2024-10-17T09:49:20.003Z (about 1 month ago)
Topics: ansible, duo, duosecurity, galaxy, pamd, role, ssh
Language: Jinja
Homepage:
Size: 38.1 KB
Stars: 2
Watchers: 3
Forks: 0
Open Issues: 5
Metadata Files:
- Readme: README.md

Awesome Lists containing this project

README

        Ansible Duo SSH Role

====================

Role to configure SSH using Duo Security. This role will install duo_unix using the [official Duo documentation](https://duo.com/docs/duounix). **Note**: this role will disable SELinux if you are running Redhat based OS (it is possible to do this without disabling SELinux, but I don't have any interest in doing that, PR is welcomed :D)

Supported OS Families

---------------------

- Ubuntu (tested)

- Arch Linux (tested)

- Redhat (tested)

Role Variables

--------------

Available variables are listed below, the default values are in [defaults/main.yml](./defaults/main.yml):

```

duossh_duosecurity_version: duo version to install, currently at duo_unix-1.11.4 (string)

duossh_duosecurity_checksum: checksum for the tarball which you want to install, can be found at https://duo.com/docs/checksums#duo-unix (string)

# List of configure option to build the binary, ignore if you are not sure

duossh_duosecurity_configure_options: []

duossh_duo_ikey: duo integration key (string)

duossh_duo_skey: duo secret key (string)

duossh_duo_host: duo API hosname (string)

duossh_require_both: whether to require both public key and duo to authenticate to ssh, default to false (bool)

# Dict of duo options, ignore if you are not sure

duossh_duo_options:

```

Dependencies

------------

None

Example Playbook

----------------

Here is an example playbook:

```

- hosts: all

  vars:

    duossh_duo_ikey: {{ secret_duo_ikey }}

    duossh_duo_skey: {{ secret_duo_skey }}

    duossh_duo_host: {{ secret_duo_host }}

    duossh_duo_options:

      failmode: safe

  roles:

  - budimanjojo.duo_ssh

```

License

-------

MIT License