ldap, internal CA, internal webserver, dns, etc.

author: Elizabeth Hunt <elizabeth.hunt@simponic.xyz> 2024-01-05 16:13:01 -0500
committer: Elizabeth Hunt <elizabeth.hunt@simponic.xyz> 2024-01-05 16:13:01 -0500
commit: fb0b3914086484d9284426985984e2c1699ba557 (patch)
tree: 963a2288a3b33f389972a78efaf3b6462bbe1925 /roles/ca/tasks
parent: b62d5f559b81556a1dd6197c72a0c43ba1744477 (diff)
download: oldinfra-fb0b3914086484d9284426985984e2c1699ba557.tar.gz
oldinfra-fb0b3914086484d9284426985984e2c1699ba557.zip
1 files changed, 15 insertions, 0 deletions
diff --git a/roles/ca/tasks/main.yml b/roles/ca/tasks/main.yml
new file mode 100644
index 0000000..2649686
--- /dev/null
+++ b/roles/ca/tasks/main.yml
@@ -0,0 +1,15 @@
+---
+
+- name: get root CA certificate
+  command: >
+    curl -k -X GET -H "Content-Type:application/json" \
+      "https://{{ step_bootstrap_ca_url }}:{{ step_ca_port }}/root/{{ step_bootstrap_fingerprint }}"
+  register: root_ca_fp
+
+- name: copy to os certificates
+  template:
+    src: "../templates/crt.j2"
+    dest: "/usr/local/share/ca-certificates/{{ step_bootstrap_ca_url }}.crt"
+
+- name: update trusted certs
+  command: "update-ca-certificates"
author	Elizabeth Hunt <elizabeth.hunt@simponic.xyz>	2024-01-05 16:13:01 -0500
committer	Elizabeth Hunt <elizabeth.hunt@simponic.xyz>	2024-01-05 16:13:01 -0500
commit	fb0b3914086484d9284426985984e2c1699ba557 (patch)
tree	963a2288a3b33f389972a78efaf3b6462bbe1925 /roles/ca/tasks
parent	b62d5f559b81556a1dd6197c72a0c43ba1744477 (diff)
download	oldinfra-fb0b3914086484d9284426985984e2c1699ba557.tar.gz oldinfra-fb0b3914086484d9284426985984e2c1699ba557.zip