debops.pki role provides a standardized management of the X.509
certificates on hosts controlled by Ansible. Other Ansible roles can utilize
the environment created by
debops.pki to automatically enable TLS/SSL
Using this role, you can bootstrap a Public Key Infrastructure in your environment using an internal Certificate Authority, easily switch the active set of certificates between internal and external Certificate Authorities, or use the ACME protocol to automatically obtain certificates from CA that support it (for example Let's Encrypt).
- Getting started
- PKI realms structure
- Internal Certificate Authorities
- ACME Integration
- ACME Tiny Integration
- ACME Certbot Integration
- External certificates
- System CA certificates
- Custom file management
- Custom hook scripts
- Ansible integration
- debops.pki default variables
- Default variable details
debops.pki - PKI management using Ansible
Copyright (C) 2013-2018 Maciej Delmanowski <email@example.com>
Copyright (C) 2015-2017 Robin Schneider <firstname.lastname@example.org>
Copyright (C) 2014-2018 DebOps <https://debops.org/>
This Ansible role is part of DebOps.
DebOps is free software; you can redistribute it and/or modify
it under the terms of the GNU General Public License version 3, as
published by the Free Software Foundation.
DebOps is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
GNU General Public License for more details.
You should have received a copy of the GNU General Public License
along with DebOps. If not, see https://www.gnu.org/licenses/.