sysadmin.yaml

- hosts: all
  tasks:
    - name: add sysadmin
      user:
        name: sysadmin
        comment: sysadmin
        uid: 500
        system: yes
        create_home: yes
        password: "{{ crypt }}"
        update_password: always
    - name: add sysadmin .ssh
      file:
        name: /home/sysadmin/.ssh
        state: directory
        owner: sysadmin
        group: sysadmin
    - name: chattr -i /home/sysadmin/.ssh/authorized_keys
      file:
        path: /home/sysadmin/.ssh/authorized_keys
        attributes: -i
        state: touch
        owner: sysadmin
        group: sysadmin
    - name: authorized_keys
      copy:
        content: "{{ authorized_keys }}"
        dest: /home/sysadmin/.ssh/authorized_keys
        mode: '0600'
    - name: chattr +i /home/sysadmin/.ssh/authorized_keys
      file:
        path: /home/sysadmin/.ssh/authorized_keys
        attributes: +i