diff options
| author | Silvio Rhatto <rhatto@riseup.net> | 2014-08-23 14:02:14 -0300 |
|---|---|---|
| committer | Silvio Rhatto <rhatto@riseup.net> | 2014-08-23 14:02:14 -0300 |
| commit | de41002518011b9fbc69d85db791db46cfcc44b2 (patch) | |
| tree | 2292ab98c222db3f68552a5d83a585e21bb28453 | |
| parent | aa1883fd7edebdd834abdca99c86c35a48b31d1c (diff) | |
| download | puppet-sshd-de41002518011b9fbc69d85db791db46cfcc44b2.tar.gz puppet-sshd-de41002518011b9fbc69d85db791db46cfcc44b2.tar.bz2 | |
Exporting ECDSA host key
| -rw-r--r-- | manifests/base.pp | 19 |
1 files changed, 17 insertions, 2 deletions
diff --git a/manifests/base.pp b/manifests/base.pp index 4001985..bb46f05 100644 --- a/manifests/base.pp +++ b/manifests/base.pp @@ -13,21 +13,36 @@ class sshd::base { case $::sshrsakey { '': { info("no sshrsakey on ${::fqdn}") } default: { - @@sshkey{$::fqdn: + @@sshkey{ "${::fqdn}-rsa": tag => "fqdn", type => ssh-rsa, key => $::sshrsakey, ensure => present, } + + @@sshkey{ "${::fqdn}-ecdsa": + tag => "fqdn", + type => ecdsa-sha2-nistp256, + key => $::sshecdsakey, + ensure => present, + } + # In case the node has uses a shared network address, # we don't define a sshkey resource using an IP address if $sshd::shared_ip == "no" { - @@sshkey{$::ipaddress: + @@sshkey{ "${::ipaddress}-rsa": tag => "ipaddress", type => ssh-rsa, key => $::sshrsakey, ensure => present, } + + @@sshkey{ "${::ipaddress}-ecdsa": + tag => "ipaddress", + type => ecdsa-sha2-nistp256, + key => $::sshecdsakey, + ensure => present, + } } } } |