A practical walkthrough showing how to deploy SSH host keys and certificates to nodes using Ansible. The approach uses two community.crypto modules — openssh_keypair and openssh_cert — with task delegation to localhost so the SSH CA operations happen on the Ansible controller while the private key stays on the target node. A block with an always clause handles cleanup of the temporary local directory even on failure.
Sort: