arillso.ca_certificates
Ansible Role: ca-certificates
Description
This Ansible role helps you manage CA certificates in the trust stores of Linux and Windows systems. You can add certificates in PEM format from local files, trusted HTTP(s) URLs, or directly as text.
Installation
To install the role, run:
ansible-galaxy install arillso.ca_certificates
Requirements
None
Role Variables
ca_certificates_root_directory
This is the location where certificates are stored on Windows before being added to the Windows certificate store.
ca_certificates_root_directory: '{{ ansible_env.TMP }}'
ca_certificates_packages
These are the packages that will be installed.
ca_certificates_packages:
- ca-certificates
ca_certificates_files
This is a list of CA certificates that will be added to the system's certificate store. Each item in the list must have a key called 'name' and one of the following keys to specify the source of the certificate:
| Option | Description |
|---|---|
| file | Path to a file on the machine running the Ansible playbook. Relative paths are based on the role's files/ directory. |
| url | URL of a PEM-formatted certificate file |
| content | Certificate content written directly in PEM format |
| store_name | Optional for Windows. This specifies the name of the store for importing the certificate. See: Ansible documentation |
| store_location | Optional for Windows. See: Ansible documentation |
ca_certificates_files: []
Dependencies
None
Example Playbook
Here’s an example of how to use the role in a playbook:
- hosts: all
roles:
- arillso.ca_certificates
Author
License
This project is licensed under the MIT License. You can find the full license text in the LICENSE file.
Copyright
(c) 2020, Arillso
Install certificates from a file or url under Windows and Linux.
ansible-galaxy install arillso.ca_certificates