On 12.01.17 09:40 Thomas Oliw wrote:
I doubt that ansible is capable of handling this kind of jumphost. A
'normal' jumphost that just forwards the connection and the ssh key
works outside of ansible and does not require much configuration
(mostly setting the hosts up in your ~/.ssh/config).
>
Hi Dick,
Well, I have no insight in why this model was choosen.
I guess that it allows strict control to limit all accesses via one
hardened jumphost, and only one place to manage sudo stuff.
I will try to go the correct route and ask the security people why the
jumpstation is built the way it
So you all use roots private key on the jumpbox to access the protected servers?
Forgive me but that seems a bit backwards - you lose audit trail for
the servers being accessed,
since you're all logging in with the same private key (i.e. roots key
on the jump host).
We generally ssh to our jump
Hello,
I know this is an old thread, but I have exactly the same problem as Ethan.
In our environment, we juse a jump host to access servers.
This is a very hardened and stripped down linux/unix server.
The only way to become root on your server-to-manage is to ssh with your
username to the
The jump box restricted only root can ssh to another system with ssh key
pairs, common user use sudo ssh do the same thing.
On Wednesday, February 4, 2015 at 1:32:17 AM UTC+8, Chris Short wrote:
That is going to trigger ssh as root. Is ssh usage restricted to root only
on the jumpbox or
As Ansible will work with your ssh config file (~/.ssh/config), have you
tried this:
#~/.ssh/config
Host *
ProxyCommand sudo ssh -W %h:%p remote_proxy_system
This will proxy ALL systems via the proxy server, using the 'sudo ssh' command.
If you don't want it to proxy everything, then you
Actually scrap that, I misunderstood the use of that command. That won't
work (and will run sudo locally)
On Tuesday, 3 February 2015 14:19:00 UTC, mic...@mcrilly.me wrote:
As Ansible will work with your ssh config file (~/.ssh/config), have you
tried this:
#~/.ssh/config
Host *
That is going to trigger ssh as root. Is ssh usage restricted to root only
on the jumpbox or are you just trying to ssh to another system as the root
user (in which case ssh -l root 1.1.1.1 would work)?
On Tuesday, February 3, 2015 at 5:26:31 AM UTC-5, Ethan Zhan wrote:
Hi,
I'm in