LiamPietralla/code-snippets
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
cfcfc70025d4d844d1729a7cd09aea8c27c8a454
code-snippets/docs/opentofu/digital-ocean-droplet-non-root-user.md
Liam Pietralla cfcfc70025
Some checks failed
Build, Test & Publish / Build and Publish Container Image (push) Has been cancelled
Details
Build, Test & Publish / Deploy to Infrastructure (push) Has been cancelled
Details
Build, Test & Publish / Build (push) Has been cancelled
Details
do non root user doc
2026-04-08 08:25:15 +10:00

860 B
Raw Blame History

Digital Ocean Droplet Non Root User

Digital Ocean droplets usually have a default user which is root, which is not ideal for security reasons. The following userdata script can be used to create a non-root user and set up SSH access for that user. This is typically used when creating a droplet with Terraform or any other infrastructure as code tool that supports user data.

data "digitalocean_ssh_key" "default" {
  name = "my-ssh-key"
}

resource "digitalocean_droplet" "example" {
  # ... other droplet configuration ...

  user_data = <<-EOF
    #cloud-config
    users:
      - name: reach
        groups: sudo
        shell: /bin/bash
        sudo: ALL=(ALL) NOPASSWD:ALL
        ssh-authorized-keys:
          - ${data.digitalocean_ssh_key.default.public_key}

    disable_root: true
    package_update: true
    package_upgrade: true
  EOF
}
Reference in New Issue View Git Blame Copy Permalink