library/roles/sshd_config/defaults/main.yml: Change the default for 'use pam' to yes. It breaks too many things otherwise.

2017-05-15 18:19:43 +02:00 · 2017-05-15 18:19:43 +02:00 · e737cb9661
parent 79718cf062
commit e737cb9661
1 changed files with 1 additions and 1 deletions
--- a/sshd_config/defaults/main.yml
+++ b/sshd_config/defaults/main.yml
@ -11,7 +11,7 @@ sshd_permit_empty_passwords: "no"
 sshd_permit_root_login: "without-password"
 sshd_strict_mode: "yes"
 # If set to no, the locked users cannot log in. adduser creates the users that have no password as locked
-sshd_use_pam: "no"
+sshd_use_pam: "yes"
 # set to "yes" only if you are using s/key or something equivalent
 sshd_challenge_response_authentication: "no"
 sshd_enable_sftp_subsystem: True