Role Name
=========

A brief description of the role goes here.

Requirements
------------

Any pre-requisites that may not be covered by Ansible itself or the role should be mentioned here. For instance, if the role uses the EC2 module, it may be a good idea to mention in this section that the boto package is required.

Role Variables
--------------

ssh_ca_name::
Name for your CA - will be stored as comment.
If CA already exists, it will not be changed.
Mandatory.

ssh_ca_user::
User for CA.
Must match with `ssh_cert`-role.
Default: `sshca`

ssh_ca_home::
Default: `/var/lib/sshca`

ssh_ca_base_dir::
Where to store the certs and CA.
Must match with `ssh_cert`-role.
Default: `~/.ssh-ca`
**Do not change!**

ssh_ca_force_regeneration::
Forces to regenerate the CA.
*The old will be deleted!**

Dependencies
------------

Use ssh-cert to use ssh-ca-server for re-/newal hosts and users certificates.

Example Playbook
----------------

.example playbook
----
- name: SSH-CA
  hosts: ssh_ca_server
	roles:
	- role: ssh-ca
----

License
-------

AGPLv3

Author Information
------------------

Denis Knauf - https://git.denkn.at/deac/ansible-role-ssh-cert