New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
ssh_hardening fail on keypair generation #388
Comments
Ansible 2.9's
To fix this, we could to something like this:
Note that this syntax is not correct. |
we could also reference the module by it's fqcn and declare a dependency with - name: replace default 2048 bits RSA keypair with 4096 bits keypair
community.crypto.openssh_keypair:
state: present
type: rsa
size: 4096
path: "{{ ssh_host_keys_dir }}/ssh_host_rsa_key"
force: false
regenerate: partial_idempotence |
Hi @rndmh3ro ,
|
Hi @schurzi , |
Hi,
the role devsec.hardening.ssh_hardening run into a failure within the play on task
replace default 2048 bits RSA keypair with 4096 bits keypair
.The parameter
regenerate
seems to be not support be openssh_keypair. Also with installed community collectioncommunity.crypto
the task is failing.community.crypto
includes openssh_keypair.Expected behavior
With included
community.crypto
collection the taskreplace default 2048 bits RSA keypair with 4096 bits keypair
should not fail.Actual behavior
Example Playbook
OS / Environment
Ansible Version
Role Version
Additional context
Add any other context about the problem here.
The text was updated successfully, but these errors were encountered: