28 lines
950 B
YAML
28 lines
950 B
YAML
|
---
|
||
|
- name: Ensure the cert directory exists
|
||
|
file:
|
||
|
path: /var/certificates
|
||
|
state: directory
|
||
|
|
||
|
- name: Generate an OpenSSL private key
|
||
|
openssl_privatekey:
|
||
|
path: "/var/certificates/{{ server_hostname }}_privkey.pem"
|
||
|
size: 4096
|
||
|
type: RSA
|
||
|
|
||
|
- name: Generate an OpenSSL Certificate Signing Request with Subject information
|
||
|
openssl_csr:
|
||
|
path: "/var/certificates/{{ server_hostname }}.csr"
|
||
|
privatekey_path: "/var/certificates/{{ server_hostname }}_privkey.pem"
|
||
|
country_name: "{{ country_name }}"
|
||
|
organization_name: "{{ organization_name }}"
|
||
|
email_address: "{{ vault_email }}"
|
||
|
common_name: "{{ server_hostname }}"
|
||
|
|
||
|
- name: Generate a Self Signed OpenSSL certificate
|
||
|
openssl_certificate:
|
||
|
path: "/var/certificates/{{ server_hostname }}_cert.pem"
|
||
|
privatekey_path: "/var/certificates/{{ server_hostname }}_privkey.pem"
|
||
|
csr_path: "/var/certificates/{{ server_hostname }}.csr"
|
||
|
provider: selfsigned
|