From b97ba76ef17db0c1c25d9def722d41792df32dfe Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Ciar=C3=A1n=20McKenna?= <ciaran@fsmpi.rwth-aachen.de>
Date: Tue, 2 Nov 2021 21:04:40 +0100
Subject: [PATCH] Fix replication ssh key

---
 ad-server-replication/tasks/main.yml | 13 +++++++++++++
 1 file changed, 13 insertions(+)

diff --git a/ad-server-replication/tasks/main.yml b/ad-server-replication/tasks/main.yml
index 82a8c89..d52f332 100644
--- a/ad-server-replication/tasks/main.yml
+++ b/ad-server-replication/tasks/main.yml
@@ -126,6 +126,19 @@
   tags:
     - ad-server
 
+- name: ensure that replication ssh private key exists
+  openssh_keypair:
+    path: /root/.ssh/id_replication
+    type: ed25519
+  delegate_to: "{{ ad_primary }}"
+  register: replication_keypair
+
+- name: ensure that replication ssh pubkey is in authorized_keys
+  authorized_key:
+    user: root
+    state: present
+    key: "{{ replication_keypair.public_key }}"
+
 - name: ensure we have a replication cronjob for sysvol
   template:
     src: replication-cron
-- 
GitLab