62 lines
1.1 KiB
Plaintext
62 lines
1.1 KiB
Plaintext
Role Name
|
|
=========
|
|
|
|
A brief description of the role goes here.
|
|
|
|
Requirements
|
|
------------
|
|
|
|
Any pre-requisites that may not be covered by Ansible itself or the role should be mentioned here. For instance, if the role uses the EC2 module, it may be a good idea to mention in this section that the boto package is required.
|
|
|
|
Role Variables
|
|
--------------
|
|
|
|
ssh_ca_name::
|
|
Name for your CA - will be stored as comment.
|
|
If CA already exists, it will not be changed.
|
|
Mandatory.
|
|
|
|
ssh_ca_user::
|
|
User for CA.
|
|
Must match with `ssh_cert`-role.
|
|
Default: `sshca`
|
|
|
|
ssh_ca_home::
|
|
Default: `/var/lib/sshca`
|
|
|
|
ssh_ca_base_dir::
|
|
Where to store the certs and CA.
|
|
Must match with `ssh_cert`-role.
|
|
Default: `~/.ssh-ca`
|
|
**Do not change!**
|
|
|
|
ssh_ca_force_regeneration::
|
|
Forces to regenerate the CA.
|
|
*The old will be deleted!**
|
|
|
|
Dependencies
|
|
------------
|
|
|
|
Use ssh-cert to use ssh-ca-server for re-/newal hosts and users certificates.
|
|
|
|
Example Playbook
|
|
----------------
|
|
|
|
.example playbook
|
|
----
|
|
- name: SSH-CA
|
|
hosts: ssh_ca_server
|
|
roles:
|
|
- role: ssh-ca
|
|
----
|
|
|
|
License
|
|
-------
|
|
|
|
AGPLv3
|
|
|
|
Author Information
|
|
------------------
|
|
|
|
Denis Knauf - https://git.denkn.at/deac/ansible-role-ssh-cert
|