commit 3b141457e98402570fd51d82239c7549b3c719a1
parent 89ec53e4b615e6c4e06d1f34b4b1a0331bf638a4
Author: Vincent Demeester <vincent@sbr.pm>
Date: Tue, 2 Jan 2024 14:24:28 +0100
Enable pam.enableSSHAgentAuth on most of my servers
Signed-off-by: Vincent Demeester <vincent@sbr.pm>
Diffstat:
3 files changed, 4 insertions(+), 0 deletions(-)
diff --git a/systems/hosts/aomi.nix b/systems/hosts/aomi.nix
@@ -219,4 +219,5 @@ in
startAt = "daily";
};
+ security.pam.enableSSHAgentAuth = true;
}
diff --git a/systems/hosts/sakhalin.nix b/systems/hosts/sakhalin.nix
@@ -123,6 +123,7 @@ in
};
};
security.apparmor.enable = true;
+ security.pam.enableSSHAgentAuth = true;
# -----------------------------------
environment.etc."vrsync".text = ''
/home/vincent/desktop/pictures/screenshots/ vincent@synodine.home:/volumeUSB2/usbshare/pictures/screenshots/
diff --git a/systems/hosts/shikoku.nix b/systems/hosts/shikoku.nix
@@ -176,4 +176,6 @@ in
openssh.authorizedKeys.keys = [ (builtins.readFile ../../secrets/builder.pub) ];
};
nix.trustedUsers = [ "root" "vincent" "builder" ];
+
+ security.pam.enableSSHAgentAuth = true;
}