| | |
| | | vms: |
| | | - name: "Bastion Host" |
| | | tag: "bastion" |
| | | description: "Bastion Host\nnohbac: true\n" |
| | |
| | | protocol: "SSH" |
| | | supportsCloudInit: true |
| | | keypairName: "opentlc-admin-backdoor" |
| | | configurationManagement: |
| | | configNetworkUsingCloudInit: false |
| | | userData: "\ |
| | | \#cloud-config\n\ |
| | | \ssh_pwauth: False\n\ |
| | | \disable_root: True\n\ |
| | | \users:\n\ |
| | | \ - name: cloud-user\n\ |
| | | \ sudo: ALL=(ALL) NOPASSWD:ALL\n\ |
| | | \ lock_passwd: False\n\ |
| | | \ ssh_authorized_keys:\n\ |
| | | \ ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCvZvn+GL0wTOsAdh1ikIQoqj2Fw/RA6F14O347rgKdpkgOQpGQk1k2gM8wcla2Y1o0bPIzwlNy1oh5o9uNjZDMeDcEXWuXbu0cRBy4pVRhh8a8zAZfssnqoXHHLyPyHWpdTmgIhr0UIGYrzHrnySAnUcDp3gJuE46UEBtrlyv94cVvZf+EZUTaZ+2KjTRLoNryCn7vKoGHQBooYg1DeHLcLSRWEADUo+bP0y64+X/XTMZOAXbf8kTXocqAgfl/usbYdfLOgwU6zWuj8vxzAKuMEXS1AJSp5aeqRKlbbw40IkTmLoQIgJdb2Zt98BH/xHDe9xxhscUCfWeS37XLp75J\n\ |
| | | \chpasswd:\n\ |
| | | \ list: |\n\ |
| | | \ cloud-user:r3dh4t1!\n\ |
| | | \ expire: False\n\ |
| | | \runcmd:\n\ |
| | | \ - sed -i -e '/^GSSAPIAuthentication/s/^.*$/GSSAPIAuthentication no/' /etc/ssh/sshd_config\n\ |
| | | \ - sed -i -e '$aUseDNS no' /etc/ssh/sshd_config\n\ |
| | | \ - systemctl restart sshd\n" |