https://github.com/willfarrell/ansible-playbook-bastion
CentOS Bastion Host Setup
https://github.com/willfarrell/ansible-playbook-bastion
Last synced: 4 months ago
JSON representation
CentOS Bastion Host Setup
- Host: GitHub
- URL: https://github.com/willfarrell/ansible-playbook-bastion
- Owner: willfarrell
- Created: 2017-03-23T01:29:45.000Z (over 9 years ago)
- Default Branch: master
- Last Pushed: 2017-03-24T19:00:55.000Z (over 9 years ago)
- Last Synced: 2025-04-01T15:48:03.008Z (about 1 year ago)
- Language: Shell
- Size: 119 KB
- Stars: 5
- Watchers: 2
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
# ansible-playbook-aws
## Requirements
- ansible >= 2.3 (`pip install git+git://github.com/ansible/ansible.git@stable-2.3`)
## Setup
### Set org_id
Keep it lowercase.
- `./run`
```yml
---
# SSH
# Min Length: 14, 1 Uppercase, 1 Lowercase, 1 Number, 1 Special Char
ssh_default_password: 'P4ssw0rd!01234'
```
3. Encrypt secrets. `ansible-vault encrypt group_vars/all/secrets.yml --vault-password-file ~/.vault_password_{{ org_id }}`
## Run
`./run`
## 2. Bastion Host
- [x] Deploy EC2 instance
- [x] Setup bastion host
- [x] Setup Security Groups (SSH)
- [x] role to add public keys to servers
- [-] Docs for google-authenticator
- [-] Docs for multi-plexing through bastion and setting up OTP
## 3. Servers
- [x] Security groups
- [x] deploy Web Server + LB
- [x] deploy DB
- [x] harden Web Server
- [x] docker Web Server
- [ ] create users & tables DB