Skip to content
Snippets Groups Projects
Commit 64efa9bf authored by nimrod's avatar nimrod
Browse files

Adjust add_tls_cert tasks to work on OpenBSD as well.

parent 2e5395d7
Branches
No related tags found
No related merge requests found
......@@ -19,9 +19,9 @@
when: ansible_os_family == 'Debian'
copy:
src: '{{ item }}'
dest: '/usr/local/share/ca-certificates/{{ item|basename }}.crt'
dest: '{{ cert_dir[ansible_os_family] }}/{{ item|basename }}.crt'
owner: root
group: root
group: '{{ root_group[ansible_os_family] }}'
mode: '0644'
notify:
- Update CA store
......@@ -56,7 +56,6 @@
-out /etc/ssl/certs/ssl-cert-snakeoil.pem \
-days 3650
-subj "/CN={{ ansible_fqdn }}"
register: tls_gen_snakeoil_cert
- name: Set TLS key and certificate
set_fact:
......
......@@ -41,3 +41,9 @@ ca_store:
ssh_daemon:
OpenBSD: sshd
Debian: ssh
root_group:
OpenBSD: wheel
Debian: root
cert_dir:
OpenBSD: /etc/ssl/certs
Debian: /usr/local/share/ca-certificates
0% Loading or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment