diff options
| author | Matthieu Saulnier <fantom@fedoraproject.org> | 2021-05-04 10:58:09 +0200 |
|---|---|---|
| committer | Matthieu Saulnier <fantom@fedoraproject.org> | 2021-05-04 10:58:09 +0200 |
| commit | 002d2c126bb7bd18adc8a1616467cf73a0ecfa05 (patch) | |
| tree | e1a482f80050c2d4b620989256f42a824e381a43 | |
| parent | 0680f71c28e2b6c37623da7c8d523dd107d4f473 (diff) | |
| download | playbooks-ansible-002d2c126bb7bd18adc8a1616467cf73a0ecfa05.tar.gz playbooks-ansible-002d2c126bb7bd18adc8a1616467cf73a0ecfa05.tar.xz playbooks-ansible-002d2c126bb7bd18adc8a1616467cf73a0ecfa05.zip | |
Add Nicosss Root CA
| -rw-r--r-- | roles/common/files/root-nicosss.pem | 39 | ||||
| -rw-r--r-- | roles/common/tasks/ca.yml | 9 |
2 files changed, 47 insertions, 1 deletions
diff --git a/roles/common/files/root-nicosss.pem b/roles/common/files/root-nicosss.pem new file mode 100644 index 0000000..2fc8de7 --- /dev/null +++ b/roles/common/files/root-nicosss.pem @@ -0,0 +1,39 @@ +-----BEGIN CERTIFICATE----- +MIIGyjCCBLKgAwIBAgIJAPC7moQWNC/wMA0GCSqGSIb3DQEBDQUAMIGeMQswCQYD +VQQGEwJGUjEUMBIGA1UECBMLUmhvbmUtQWxwZXMxGjAYBgNVBAcTEVNhbGFpc2Ut +c3VyLVNhbm5lMRAwDgYDVQQKEwdOaWNvc3NzMRgwFgYDVQQDEw9OaWNvc3NzIFJv +b3QgQ0ExMTAvBgkqhkiG9w0BCQEWInBvc3RtYXN0ZXIgQCBuaWNvc3NzLmhvbWVs +aW51eC5vcmcwHhcNMTQwNDIwMTY1MjI0WhcNMjQwNDE3MTY1MjI0WjCBnjELMAkG +A1UEBhMCRlIxFDASBgNVBAgTC1Job25lLUFscGVzMRowGAYDVQQHExFTYWxhaXNl +LXN1ci1TYW5uZTEQMA4GA1UEChMHTmljb3NzczEYMBYGA1UEAxMPTmljb3NzcyBS +b290IENBMTEwLwYJKoZIhvcNAQkBFiJwb3N0bWFzdGVyIEAgbmljb3Nzcy5ob21l +bGludXgub3JnMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAsbCWSlLE +97U2y5Keo1cpiNKl04dLKrH2YlMz64QcfpyCdEQw5Ew+Aa+gjyaZbb1XWZThjwgG +KSimvwGy5MoAtqof7ZWJzQGEA8r646WSKo5QDd6Q4yiB2vq89GuX3kz8BplE2BMi +91/6S1pd+fVj5I+vo2tPIPUDzSYkDABkLoG+wijlOluBoNe2Igg2fnxo2ArTuJe5 +3HdRRhYFBaxywodNadMxmHD2XAzTlhxaFhDodzTxUqIDn/0LZ8kUdEeOmhXuiShP +S9+vlLJ8vnD1alLxPPoagQI295Jwe+a0kryeZ/pXzRjtv/K0m0LOueimW23d8i76 +gbscqZ3A7fiIn44GuR0uG3K+6Bse7pPhVgCGofOPS6xZ2Q2cejTeXaa7FCmdLfxX +DkYMchelYGS9wSu9Zb+OGLuoRNU/t5gXUFYIRzfMjajnQoRBF66xeOsYldsBATjI +qyzduFJQWee6r/kCyhwNuiD+S84DP+51xxEgussKxN8rCPX9HCzfcl76lfIbX8Xb +ZAuxnkC1ZMPSMyuDRMsUuMWizMjAevAt8IkvqUKdGeMAgpXwGmHLVBUrRaEHk/DR +Gw13Qnij+NrmuZDFpCFF6bVsOFx6AFGHEh0f5EeSgGLT7JDXTszwI4amwGgv/5o4 +kznRtT3tMtTEsnOc1M4H1xniZxvlxKPJNfECAwEAAaOCAQcwggEDMB0GA1UdDgQW +BBQDnHVRlWTn0/tPhWSmrdGi6fGuTTCB0wYDVR0jBIHLMIHIgBQDnHVRlWTn0/tP +hWSmrdGi6fGuTaGBpKSBoTCBnjELMAkGA1UEBhMCRlIxFDASBgNVBAgTC1Job25l +LUFscGVzMRowGAYDVQQHExFTYWxhaXNlLXN1ci1TYW5uZTEQMA4GA1UEChMHTmlj +b3NzczEYMBYGA1UEAxMPTmljb3NzcyBSb290IENBMTEwLwYJKoZIhvcNAQkBFiJw +b3N0bWFzdGVyIEAgbmljb3Nzcy5ob21lbGludXgub3JnggkA8LuahBY0L/AwDAYD +VR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOCAgEANmdTb7/5f053HjSL75WN4g3l +Qt1rw0Dsp6n5Rxv2PIVKPU0ya+HVzugrCxwJLZ95P5ZIz05Mz9jy9l7+YnaxD2TF +StuSmMGCVSOeu8SUw4r15pDSOYEKJresG/lXpVhBGNqG5UKtVeGMcL0ezc/Icerm +oiRgemY7Dy2xtfMr2LSg7OEG51SN1U1v205EjMFCBP2MXaHKFLoKtUWcY8x0mcti +qysYhIe5ZSr0zvGpRxyZg19b3YaGZK5tvInR6Q3KacNZBX4XmRY2Nxi+3oF95Rn5 +Pc1t6/M/2tpemt6AJTJQF8SunX/bJA3PTzbvgp4+jGkQ1wRtGrfHxoM2dQDcumrr +vu+QLT8+8mK5x96l5kodJHX6cyytqMXS4Ehe2W3JTxeEhmdK0vZwXcZiMh1y3hLJ +cOxKsi3PC3BT9zRqtFQDd9IlVvIgjzIqKAHUV5DZhcLOsW7hvTkgUAt+qmfGNZsQ +9IiaVvPQSOUYT9XWTxNKq/Ea1Wudobbuc8/eHjF6ODHRPF6lWK/gf3ZTYUT88EQr +b86yD8tr+WKo7eotSE2tJgJuJdG5QkeaCrYLdCiCL2gsLXq/8gxLIF9NBdksxhjm +gygE4jefg5cGTZJC87287ObSPtlvEHywCgGcT/WmcEslKHxu2U81dRGhVrZuxAvS +6VMmiXfTvpE+vNM8SNg= +-----END CERTIFICATE----- diff --git a/roles/common/tasks/ca.yml b/roles/common/tasks/ca.yml index 68d0367..8d80e79 100644 --- a/roles/common/tasks/ca.yml +++ b/roles/common/tasks/ca.yml @@ -6,9 +6,16 @@ register: cafile tags: firstinstall +- name: Installation du CA de Nicosss + copy: + src: root-nicosss.pem + dest: /etc/pki/ca-trust/source/anchors/root-nicosss.pem + mode: 0444 + register: cafile2 + - name: Mise à jour de la base de confiance CA command: /usr/bin/update-ca-trust - when: cafile is changed + when: cafile is changed or cafile2 is changed tags: firstinstall - name: Installation CA personnel pour applis serveur |