ansible/cfssl-client-role
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

switch to csr.json mode

Browse source
This commit is contained in:
nono 2022-12-21 01:27:11 +01:00
parent 89312ca93b
commit c077335f32
5 changed files with 62 additions and 31 deletions
Download patch file Download diff file Expand all files Collapse all files

20
defaults/main.yml
View file

@ -3,11 +3,23 @@ cfssl_version: 1.6.3
cfssl_bin_directory: /usr/bin
cfssl_serve_url: localhost:8888
cfssl_profile: server
cfssl_auth_key: "0123456789ABCDEF0123456789ABCDEF"
cnf_file: /etc/ssl/server.cnf
key_file: /etc/ssl/private/{{inventory_hostname_short}}.key
csr_file: /etc/ssl/{{inventory_hostname_short}}.csr
cert_file: /etc/ssl/certs/{{inventory_hostname_short}}.pem
crt_key:
algo: rsa
size: 4096
crt_names:
- C: FR
L: 'Paris'
O: 'Acme'
OU: 'IT'
ssl_dir: /etc/ssl
cfssl_config_file: {{ssl_dir}}/cfssl.json
cfssl_csr_file : {{ssl_dir}}/csr.json
key_file: {{ssl_dir}}/private/{{inventory_hostname_short}}.key
cert_file: {{ssl_dir}}certs/{{inventory_hostname_short}}.pem
integrate_ca: yes
ca_filename : my_intermediate_ca.crt