2023-04-27 23:38:14 +02:00
|
|
|
# Role `cert`
|
|
|
|
|
|
|
|
|
|
A role for ordering and renewing certificates from Lets Encrypt via ACME.
|
|
|
|
|
It uses the DNS challenge and fullfills it via a BIND 9 server given to the role.
|
|
|
|
|
|
|
|
|
|
## Supported Distributions
|
|
|
|
|
|
|
|
|
|
The following distributions are supported:
|
|
|
|
|
|
|
|
|
|
- Debian 11
|
|
|
|
|
|
|
|
|
|
## Required Arguments
|
|
|
|
|
|
|
|
|
|
For the required arguments look at the [`argument_specs.yaml`](./meta/argument_specs.yml)
|
|
|
|
|
|
|
|
|
|
## `hosts`
|
|
|
|
|
|
|
|
|
|
The `hosts` for this role need to be the machines on which you want to have the certificates.
|
|
|
|
|
|
|
|
|
|
## Links & Resources
|
|
|
|
|
|
|
|
|
|
- <https://docs.ansible.com/ansible/7/collections/community/crypto/acme_certificate_module.html>
|
|
|
|
|
- <https://docs.ansible.com/ansible/7/collections/community/crypto/openssl_privatekey_module.html>
|
|
|
|
|
- <https://docs.ansible.com/ansible/7/collections/community/crypto/openssl_csr_module.html>
|
2023-05-01 00:18:59 +02:00
|
|
|
- <https://eff-certbot.readthedocs.io/en/stable/using.html#where-are-my-certificates>
|
