This is a collection of Ansible playbooks to use with EJBCA, SignServer, and integrations. Both Community and Enterprise versions of EJBCA are supported. By using these Ansible playbooks you can easily get EJBCA or SignServer up and running, including a complete technology stack with Java 11, Apache HTTPD, Maria DB, SoftHSM, and Wildfly.
These playbooks are available:
- ansible_ejbca_signsrv – For use with EJBCA & SignServer Community or Enterprise version to install and configure EJBCA CA, external RA, & external VA, or only standalone CA without deploying external RA/VA, and SignServer.
- ejbca_certificate_request_role – For use with EJBCA Enterprise version to issue certificates from an EJBCA server using the REST API
Example: To run the EJBCA or SignServer ansible playbook with EJBCA or SignServer Community, do the following:
- Make sure to follow the prerequisites.
- Set any required variables.
- Run the ansible playbook. For details, see README in the respective playbook.
We welcome contributions. These Ansible playbooks are open source and community supported, meaning that no SLA is applicable.
- To report a problem or suggest a new feature, use the Issues tab.
- If you want to contribute actual bug fixes or proposed enhancements, use the Pull requests tab.
- Ask the community for ideas: EJBCA Discussions
- Read more in our documentation: Deploying PKI and signature services in DevOps environments
EJBCA is licensed under the LGPL license, please see LICENSE.