27 lines
950 B
YAML
27 lines
950 B
YAML
---
|
|
- name: Ensure the cert directory exists
|
|
file:
|
|
path: /var/certificates
|
|
state: directory
|
|
|
|
- name: Generate an OpenSSL private key
|
|
openssl_privatekey:
|
|
path: "/var/certificates/{{ server_hostname }}_privkey.pem"
|
|
size: 4096
|
|
type: RSA
|
|
|
|
- name: Generate an OpenSSL Certificate Signing Request with Subject information
|
|
openssl_csr:
|
|
path: "/var/certificates/{{ server_hostname }}.csr"
|
|
privatekey_path: "/var/certificates/{{ server_hostname }}_privkey.pem"
|
|
country_name: "{{ country_name }}"
|
|
organization_name: "{{ organization_name }}"
|
|
email_address: "{{ vault_email }}"
|
|
common_name: "{{ server_hostname }}"
|
|
|
|
- name: Generate a Self Signed OpenSSL certificate
|
|
openssl_certificate:
|
|
path: "/var/certificates/{{ server_hostname }}_cert.pem"
|
|
privatekey_path: "/var/certificates/{{ server_hostname }}_privkey.pem"
|
|
csr_path: "/var/certificates/{{ server_hostname }}.csr"
|
|
provider: selfsigned
|