From d282fe416bbf72cc0d3986400d9f7c30b1010c67 Mon Sep 17 00:00:00 2001
From: Rene Mewissen <rene@tantooine.myfirewall.org>
Date: Thu, 27 Oct 2022 17:54:02 +0200
Subject: [PATCH] + support for sshd_config.d where not used

---
 roles/base/tasks/system_setup/openssh.yml | 12 ++++++++++++
 1 file changed, 12 insertions(+)

diff --git a/roles/base/tasks/system_setup/openssh.yml b/roles/base/tasks/system_setup/openssh.yml
index 5241d8a..47d2477 100644
--- a/roles/base/tasks/system_setup/openssh.yml
+++ b/roles/base/tasks/system_setup/openssh.yml
@@ -12,6 +12,18 @@
     enabled: yes
     state: started
 
+- name: system setup | openssh | create config dir
+  file:
+    path: "/etc/ssh/sshd_config.d"
+    state: directory
+
+- name: system setup | openssh | include sshd config dir in configuration
+  lineinfile:
+    path: "/etc/ssh/sshd_config"
+    line: "Include /etc/ssh/sshd_config.d/*.conf"
+    state: present
+    insertbefore: "^Port.*$"
+
 - name: system setup | openssh | copy sshd custom config
   tags: openssh,ssh,system,settings
   copy: