add cert authorities to ssh known hosts

2023-10-03 08:06:12 +02:00 · 2023-10-03 08:06:12 +02:00 · 1720dac456
commit 1720dac456
parent 4c53986c89
1 changed files with 15 additions and 0 deletions
--- a/configuration.nix
+++ b/configuration.nix
@ -30,6 +30,7 @@ in
  };

  home-manager.users.pim = import /home/pim/.config/home-manager/home.nix;
+
  users.users.pim = {
    isNormalUser = true;
    extraGroups = [ "wheel" ];
@ -48,4 +49,18 @@ in
  };

  system.stateVersion = stateVersion;
+
+  programs.ssh.knownHosts = {
+    dmz = {
+      hostNames = ["*.dmz"];
+      publicKey = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIAX2IhgHNxC6JTvLu9cej+iWuG+uJFMXn4AiRro9533x";
+      certAuthority = true;
+    };
+
+    hypervisors = {
+      hostNames = ["*.hyp"];
+      publicKey = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIFzRkH3d/KVJQouswY/DMpenWbDFVOnI3Vut0xR0e1tb";
+      certAuthority = true;
+    };
+  };
 }