archive/ansible--pki
Archived
3
Fork 0
Code Issues Pull requests Projects Releases Packages Activity Actions
Creates server and client certs with openssl
This repository has been archived on 2026-05-07. You can view files and clone it, but you cannot make any changes to its state, such as pushing and creating new issues, pull requests or comments.
5 commits 1 branch 0 tags 30 KiB
Find a file
Exact
ThomasTSteinbach a9781e0fc1 docs: update references from gitlab.xarif.de to git.xarif.de
2026-05-06 21:49:10 +02:00
defaults initial commit 2018-05-16 15:19:45 +02:00
meta just add -extfile if content is not empty 2018-06-06 22:16:22 +02:00
tasks just add -extfile if content is not empty 2018-06-06 22:16:22 +02:00
README.md docs: update references from gitlab.xarif.de to git.xarif.de 2026-05-06 21:49:10 +02:00

README.md

thomass.pki

This role is creating a PKI consisting of:

key file name
CA private key ca-key.pem
CA public key ca.pem
Server private key server-key.pem
Server public key / certificate server-cert.pem
Client private key client-key.pem
Client public key / certificate client-cert.pem

Mandatory Variables

variable value description
pki_password String The password for the CA private key.
pki_server_dns FQND The FQND of the Server

Example

- role: thomass.pki
  pki_password: mysecret
  pki_server_dns: example.com
  pki_ca_country: DE
  pki_ca_state: Sachsen
  pki_ca_locality: Zwickau
  pki_ca_organization: "Example Ltd."
  pki_server_extfile_content: "subjectAltName = IP:10.10.10.20,IP:127.0.0.1"
  pki_client_extfile_content: "extendedKeyUsage = clientAuth"

Info

Mention common information in parent README.md

Licence

The whole repository is licenced under BSD. Please mention following:

git.xarif.de / ThomasSteinbach (thomass at aikq.de)