From e8b406ff0ae67ab095cc0dd5ab815fdef0067d9b Mon Sep 17 00:00:00 2001
From: Markos Chandras <mchandras@suse.de>
Date: Mon, 30 Oct 2017 16:42:19 +0000
Subject: Bump OpenStack Ansible SHAs

We also need to allow root logins when the ansible-hardening role
is applied which are disabled by default.

Change-Id: I71f881305bafdd884d541cd34796a6fed8eee157
Signed-off-by: Markos Chandras <mchandras@suse.de>
---
 xci/file/ha/user_variables.yml | 3 +++
 1 file changed, 3 insertions(+)

(limited to 'xci/file/ha/user_variables.yml')

diff --git a/xci/file/ha/user_variables.yml b/xci/file/ha/user_variables.yml
index 8235f6f7..72960a01 100644
--- a/xci/file/ha/user_variables.yml
+++ b/xci/file/ha/user_variables.yml
@@ -21,6 +21,9 @@
 # # Debug and Verbose options.
 debug: false
 
+# Allow root logins
+security_sshd_permit_root_login: yes
+
 haproxy_keepalived_external_vip_cidr: "192.168.122.220/32"
 haproxy_keepalived_internal_vip_cidr: "172.29.236.222/32"
 haproxy_keepalived_external_interface: br-vlan
-- 
cgit 1.2.3-korg