From df2aa04ec6a780805534b91828144e9a7cdce19f Mon Sep 17 00:00:00 2001
From: Jonathan DeMasi <me@jthan.io>
Date: Mon, 26 Jan 2026 00:19:53 -0700
Subject: [PATCH] why is this making many lines please stop

---
 ansible/roles/ldap_client/tasks/sshd.yaml | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/ansible/roles/ldap_client/tasks/sshd.yaml b/ansible/roles/ldap_client/tasks/sshd.yaml
index bc72022..3fc8b9a 100644
--- a/ansible/roles/ldap_client/tasks/sshd.yaml
+++ b/ansible/roles/ldap_client/tasks/sshd.yaml
@@ -1,14 +1,16 @@
 - name: Ensure sshd has AuthorizedKeysCommand
   lineinfile:
+    state: present
     path: /etc/ssh/sshd_config
-    regexp: '^AuthorizedKeysCommand'
+    regexp: '^#?AuthorizedKeysCommand'
     line: 'AuthorizedKeysCommand /usr/bin/sss_ssh_authorizedkeys'
   notify: restart sshd
 
 - name: Ensure sshd has AuthorizedKeysCommandUser
   lineinfile:
+    state: present
     path: /etc/ssh/sshd_config
-    regexp: '^AuthorizedKeysCommandUser'
+    regexp: '^#?AuthorizedKeysCommandUser'
     line: 'AuthorizedKeysCommandUser nobody'
   notify: restart sshd