#cloud-config
users:
  - name: your-user
    lock_passwd: false
    passwd: 
    groups: wheel
    ssh_authorized_keys:
      -
    shell: /bin/bash
    sudo: ['ALL=(ALL) NOPASSWD: ALL']
write_files:
  - path: /etc/ssh/sshd_config
    content: |
         Protocol 2
         HostKey /etc/ssh/ssh_host_rsa_key
         HostKey /etc/ssh/ssh_host_dsa_key
         HostKey /etc/ssh/ssh_host_ecdsa_key
         HostKey /etc/ssh/ssh_host_ed25519_key         
         SyslogFacility AUTH
         LogLevel INFO
         LoginGraceTime 120
         PasswordAuthentication no
         PermitRootLogin no
         StrictModes yes
         PubkeyAuthentication yes
         IgnoreRhosts yes
         HostbasedAuthentication no
         PermitEmptyPasswords no
         ChallengeResponseAuthentication no
         PrintLastLog yes
         TCPKeepAlive yes
         AcceptEnv LANG LC_*         
         UsePAM yes
prefer_fqdn_over_hostname: true
package_update: true
package_upgrade: true
packages:
  - plocate
  - unzip
  - tar
  - policycoreutils-python-utils
  - rsync
  - nfs-utils
  - vim