cacert/README.md

1.3 KiB

Inventory example:

cacert_ca_name: "myCA"
cacert_ca_trust_anchors_update: True

cacert_ca_copy_to:
  hosts:
    - { host: "server-1", path: "/opt/certs" }
    - { host: "server-2", path: "/opt/certs" }
  groups:
    - { group: "cacert_clients", path: "/opt/certs" }
    - { group: "mygroupname", path: "/opt/certs" }

cacert_cn_certs:
  - name: mycertname.example.com
    hosts:
      - { host: "server-1", path: "/opt/certs" }
      - { host: "server-2", path: "/opt/certs" }
      - { host: "server-1", path: "/opt/certs", concat: "pem" }
      - { host: "server-2", path: "/opt/certs", concat: "pem" }
    groups:
      - { group: "cacert_clients", path: "/opt/certs" }
      - { group: "mygroupname", path: "/opt/certs" }

cacert_group_certs:
  - name: mygroupcert
    host_groups:
      - consul
      - patroni
    hosts:
      - { host: "server-1", path: "/opt/certs" }
      - { host: "server-2", path: "/opt/certs" }
      - { host: "server-1", path: "/opt/certs", concat: "pem" }
      - { host: "server-2", path: "/opt/certs", concat: "pem" }
    groups:
      - { group: "cacert_clients", path: "/opt/certs" }
      - { group: "mygroupname", path: "/opt/certs" }