sshd

pdk
Setup sshd with optional firewall and monit support
Puppet-Finland team

Puppet-Finland team

puppetfinland

5,487 downloads

3,928 latest version

5.0 quality score

Version information

  • 2.2.3 (latest)
  • 2.2.2
  • 2.2.1
released Jul 3rd 2019
This version is compatible with:
  • Puppet Enterprise 2018.1.x, 2017.3.x, 2017.2.x, 2017.1.x, 2016.5.x, 2016.4.x
  • Puppet >= 4.7.0 < 6.0.0
  • CentOS
    ,
    Debian
    , FreeBSD,
    Ubuntu

Start using this module

Documentation

puppetfinland/sshd — version 2.2.3 Jul 3rd 2019

sshd

A general-purpose sshd module for Puppet. Can be used in conjunction FreeIPA/sssd. Has optional firewall and monit support.

Module usage

Use the permissive defaults (password auth and root logins enabled):

include ::sshd

Disable password auth, root logins and rate-limit connections with iptables and ip6tables:

class { '::sshd':
  permitrootlogin        => 'no',
  passwordauthentication => 'no',
  limit                  => '3/min',
}

Enable root logins without password when using ssh keys:

class { '::sshd':
  permitrootlogin        => 'without-password',
  passwordauthentication => 'no',
}

Integrate with FreeIPA authentication:

class { '::sshd':
  authorized_keys_from_sssd => true,
  gssapiauthentication      => 'yes',
}

For further details refer to init.pp.