library/roles/sshd_config/defaults/main.yml: Change the default for 'use pam' to yes. It breaks too many things otherwise.

This commit is contained in:
Andrea Dell'Amico 2017-05-15 18:19:43 +02:00
parent 79718cf062
commit e737cb9661
1 changed files with 1 additions and 1 deletions

View File

@ -11,7 +11,7 @@ sshd_permit_empty_passwords: "no"
sshd_permit_root_login: "without-password" sshd_permit_root_login: "without-password"
sshd_strict_mode: "yes" sshd_strict_mode: "yes"
# If set to no, the locked users cannot log in. adduser creates the users that have no password as locked # If set to no, the locked users cannot log in. adduser creates the users that have no password as locked
sshd_use_pam: "no" sshd_use_pam: "yes"
# set to "yes" only if you are using s/key or something equivalent # set to "yes" only if you are using s/key or something equivalent
sshd_challenge_response_authentication: "no" sshd_challenge_response_authentication: "no"
sshd_enable_sftp_subsystem: True sshd_enable_sftp_subsystem: True