Ansible Role to generate certificates

ansible ansible-role automation certbot certificate certificate-authority certificates iac infrastructure-as-code letsencrypt pki ssl tls

Go to file

AnsibleGuy 84c2277e80 init		2021-11-02 22:08:11 +01:00
defaults	init	2021-11-02 22:08:11 +01:00
filter_plugins	init	2021-11-02 22:08:11 +01:00
meta	init	2021-11-02 22:08:11 +01:00
tasks	init	2021-11-02 22:08:11 +01:00
LICENSE.txt	init	2021-11-02 22:08:11 +01:00
README.md	init	2021-11-02 22:08:11 +01:00
playbook.yml	init	2021-11-02 22:08:11 +01:00
requirements.yml	init	2021-11-02 22:08:11 +01:00

README.md

Ansible Role for certificate generation

Tested:

Debian 11

Functionality

Package installation
- Ansible dependencies (minimal)
Configuration
- Two Possible Modes
  - Generate Self-Signed certificate
  - Create an internal-ca and generate certificates using it
- Default config:
  - Mode => Self-Signed
- Default opt-ins: *
- Default opt-outs: *

Info

Note: this role currently only supports debian-based systems
Note: Most of this functionality can be opted in or out using the main defaults file and variables!

Requirements

Community collection: ansible-galaxy install -r requirements.yml

Usage

Define the config as needed:

app:

Run the playbook:

ansible-playbook -K -D -i inventory/hosts.yml playbook.yml

There are also some useful tags available:

base => only configure basics; sites will not be touched
sites
config
certs