Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- ---
- - hosts: linode
- remote_user: root
- vars:
- NORMAL_USER_NAME: 'yourusername'
- tasks:
- - name: Make sure we have a 'wheel' group
- group:
- name: wheel
- state: present
- - name: "Create a secondary, non-root user"
- user: name={{ NORMAL_USER_NAME }}
- password='$6$rounds=656000$W.dSlhtSxE2HdSc1$4WbCFM6zQV1hTQYTCqmcddnKrSXIZ9LfWRAjJBervBFG.rH953lTa7rMeZNrN65zPzEONntMtYt9Bw74PvAei0'
- shell=/bin/bash
- group=wheel
- - name: Add remote authorized key to allow future passwordless logins
- authorized_key: user={{ NORMAL_USER_NAME }} key="{{ lookup('file', '/Users/yourusename/.ssh/id_rsa.pub') }}"
- - name: Allow 'wheel' group to have passwordless sudo
- lineinfile:
- dest: /etc/sudoers
- state: present
- regexp: '^%wheel'
- line: '%wheel ALL=(ALL) NOPASSWD: ALL'
- - name: Add sudoers users to wheel group
- user:
- name=nick
- groups=wheel
- append=yes
- state=present
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement