Puppet Class: yubiauth::yhsm_aead_sync

Defined in:
modules/yubiauth/manifests/yhsm_aead_sync.pp

Overview

This sets up an rsync server, which can be used to synchronise the AEADs between the Yubico authentication servers.

Parameters:

  • sync_allowed (Any) (defaults to: '127.0.0.1')


2
3
4
5
6
7
8
9
10
11
12
13
# File 'modules/yubiauth/manifests/yhsm_aead_sync.pp', line 2

class yubiauth::yhsm_aead_sync(
    $sync_allowed = '127.0.0.1',
) {
    include rsync::server

    rsync::server::module { 'aead_sync':
        path        => '/var/cache/yubikey-ksm/aeads',
        read_only   => 'yes',
        hosts_allow => $sync_allowed,
        auto_ferm   => true,
    }
}