Hi,
I'd like to issue wildcard-certificates following this guide: https://www.freeipa.org/page/Howto/Wildcard_certificates Is there any way to manage certprofiles and ca-acls using ansible?
Cheers, Philipp
Hi Philipp,
You might not want to use wildcard certificates ( https://tools.ietf.org/html/rfc6125#section-7.2).
I don't know of any module that can directly manage certprofiles and ca-acls using Ansible and FreeIPA. It is not the best solution, but you might use `command` and follow the Howto/Wildcard Certificates.
Rafael
On Tue, Apr 21, 2020 at 7:03 PM pleusmann--- via FreeIPA-users < freeipa-users@lists.fedorahosted.org> wrote:
Hi,
I'd like to issue wildcard-certificates following this guide: https://www.freeipa.org/page/Howto/Wildcard_certificates Is there any way to manage certprofiles and ca-acls using ansible?
Cheers, Philipp _______________________________________________ FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org To unsubscribe send an email to freeipa-users-leave@lists.fedorahosted.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/freeipa-users@lists.fedorahoste...
Hi Rafael,
I am aware of the deprecation of wildcard certs. I do not see a feasible other option in my case, since the certificate needs to match dynamic subdomains. So I'll take this.
Thanks for your command-proposal. How do you recommend to perform authentication to issue the command?
Cheers, Philipp
freeipa-users@lists.fedorahosted.org