From e7ed62bed2990e192be228ef78ee61725185c399 Mon Sep 17 00:00:00 2001 From: Andrea Dell'Amico Date: Thu, 8 Sep 2016 12:05:07 +0200 Subject: [PATCH] library/roles/sshd_config/defaults/main.yml: Add a comment to clarify the behaviour of 'sshd_use_pam' set to 'no'. --- sshd_config/defaults/main.yml | 1 + 1 file changed, 1 insertion(+) diff --git a/sshd_config/defaults/main.yml b/sshd_config/defaults/main.yml index 2143c096..d4463050 100644 --- a/sshd_config/defaults/main.yml +++ b/sshd_config/defaults/main.yml @@ -9,6 +9,7 @@ sshd_permit_empty_passwords: "no" # "no" or "without-password" sshd_permit_root_login: "without-password" sshd_strict_mode: "yes" +# If set to no, the locked users cannot log in. adduser creates the users that have no password as locked sshd_use_pam: "no" # set to "yes" only if you are using s/key or something equivalent sshd_challenge_response_authentication: "no"