ansible-config/roles/certsync/tasks/main.yml

---
- name: create SSH key
  command: ssh-keygen -b 4096 -C {{ ansible_nodename }} -f {{ certsync_key }}
  args:
    creates: "{{ certsync_key }}"
  tags: certsync

- name: template certsync script
  template:
    src: certsync
    dest: /usr/local/sbin/
    owner: root
    group: staff
    mode: 0550
  tags: certsync

- name: template certsync timer
  template:
    src: "{{ item }}"
    dest: /lib/systemd/system/
  with_items:
    - certsync.service
    - certsync.timer

- name: enable certsync timer
  systemd:
    name: certsync.timer
    state: started
    enabled: yes
    daemon_reload: yes
Add certsync role 2017-02-18 14:18:39 +01:00			`---`
			`- name: create SSH key`
			`command: ssh-keygen -b 4096 -C {{ ansible_nodename }} -f {{ certsync_key }}`
			`args:`
			`creates: "{{ certsync_key }}"`
			`tags: certsync`

			`- name: template certsync script`
			`template:`
Replace certsync cron job with systemd timer 2020-03-25 21:28:19 +01:00			`src: certsync`
			`dest: /usr/local/sbin/`
Add certsync role 2017-02-18 14:18:39 +01:00			`owner: root`
			`group: staff`
			`mode: 0550`
			`tags: certsync`

Replace certsync cron job with systemd timer 2020-03-25 21:28:19 +01:00			`- name: template certsync timer`
			`template:`
			`src: "{{ item }}"`
			`dest: /lib/systemd/system/`
			`with_items:`
			`- certsync.service`
			`- certsync.timer`

			`- name: enable certsync timer`
			`systemd:`
			`name: certsync.timer`
			`state: started`
			`enabled: yes`
			`daemon_reload: yes`