blob: a8bc1769583fc067c69a68298c360b1a1d501911 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
|
---
# Generate certs to local current dir where ansible in run (= playbook_dir)
# After ansible run, dir can be deleted but idempotence is lost and certs are re-generated in next run
certificates_local_dir: "{{ playbook_dir }}/certs"
root_ca_path:
RedHat: "/etc/pki/ca-trust/source/anchors/"
Debian: "/usr/local/share/ca-certificates/"
extract_root_cert:
RedHat:
update_command: /usr/bin/update-ca-trust extract
Debian:
update_command: update-ca-certificates
|