Ansible Role: Diffie-Hellman Parameters
Uses OpenSSL to generate strong Diffie-Hellman parameters.
Depending on the system and key size generating this keys can take a very long time.
To speedup key generate use dhparam_use_dsaparam.
Role Variables
| Variable | Required | Default |
|---|---|---|
| dhparam_size | no | 4096 |
| dhparam_file | no | /etc/ssl/private/dhparam.pem |
| dhparam_update_enabled | no | false |
| dhparam_update_interval | no | weekly |
| dhparam_use_dsaparam | no | false |
Examples
Generate dhparams with 2048 bit once
- role: bngsudheer.dhparam
dhparam_size: 2048Generate dhparams with auto-update cronjob
- role: bngsudheer.dhparam
dhparam_update_enabled: trueGenerate dhparams using dsaparam with auto-update cronjob
- role: bngsudheer.dhparam
dhparam_update_enabled: true
dhparam_use_dsaparam: true