Update to 2024-06-10 14:01

roles/ssh/defaults/main.yml

@@ -75,3 +75,6 @@ sshd_use_dns: True
 # List of users for which no management of the SSH keys will be done by ansible (they will
 # be able to set their own ~/.ssh/authorized_keys)
 ssh_local_users: []
+
+# Optional list of custom sshd_config options
+sshd_custom_options: {}

roles/ssh/templates/sshd_config.j2

@@ -56,6 +56,10 @@ AcceptEnv LC_PVE_*
 X11Forwarding no
 Subsystem       sftp    internal-sftp
 
+{% for directive in sshd_custom_options.keys() | list %}
+{{ directive }} {{ sshd_custom_options[directive] }}
+{% endfor %}
+
 # Local user are managed separately
 Match User root,ansible,lbkp,zimbra,zfs-recv{% if ssh_local_users | length > 0 %},{{ ssh_local_users | join(',') }}{% endif +%}
   AuthorizedKeysFile /etc/ssh/authorized_keys/%u/authorized_keys %h/.ssh/authorized_keys