Ansible Lets Encrypt Client
- Copy secrets.yml.template to secrets.yml and fill out. Alternatively, you can use the secrets built into Tower.
- Login to LetsEncrypt on the certificate managment node. This can be a remote
Fedora/RHEL/CentOS machine or the localhost.
./login.yml -i INVENTORY -e @secrets.yml -l CERT_MANAGER
- Generate certificates for hosts in your inventory.
./site.yml -i INVENTORY -e @secrets.yml -l HOSTS,NEEDING,CERTS
- Inventory hostnames should be the FQDN. It will be used as the Common Name for the certs.