Added sshd_config_files directory

roles/native-sshd/files/sshd_config

@@ -110,6 +110,9 @@ PrintMotd no # pam does that
 # override default of no subsystems
 Subsystem	sftp	/usr/lib/ssh/sftp-server
 
+# Include specific configuration files
+Include /etc/ssh/sshd_config_files/*
+
 # Example of overriding settings on a per-user basis
 #Match User anoncvs
 #	X11Forwarding no

roles/native-sshd/handlers/main.yml

@@ -1,2 +1,6 @@
 - name: sshd restart
-  service: name=sshd state=restarted enabled=yes
+  systemd:
+    name: sshd
+    state: restarted
+    enabled: yes
+    daemon_reload: yes

roles/native-sshd/readme.md

@@ -6,3 +6,6 @@ A wrong configuration of this role can lead to an lockout of the system which ju
 
 ## PAM
 - https://www.google.com/search?client=firefox-b-d&q=sshd+why+to+deactivate+pam
+
+# see
+- https://man7.org/linux/man-pages/man5/sshd_config.5.html

roles/native-sshd/tasks/main.yml

@@ -1,3 +1,7 @@
+- name: create sshd_config_files directory
+  file:
+    path: /etc/ssh/sshd_config_files
+    state: directory
 - name: create sshd_config
   copy:
     src:  sshd_config