Skip to content
Snippets Groups Projects
Normal view Permalink
copyCerts.yml 1.23 KiB
Newer Older
Shahaan Ayyub's avatar
Adding easy-rsa Client and Server Roles, Along with OpenVPN-Server
Shahaan Ayyub committed
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 
--- 
- 
  failed_when: "CAcert.stat.exists  == false"
  name: "Checking if CA certificate exist"
  register: CAcert
  stat: path="/etc/easy-rsa/2.0/keys/ca.crt"
- 
  name: "Copying CA certificate"
  shell: "cp -rpvf /etc/easy-rsa/2.0/keys/ca.crt /etc/openvpn/"
  when: "CAcert.stat.exists  == true"
- 
  failed_when: "ServerCert.stat.exists  == false"
  name: "Check if Server certificate exist"
  register: ServerCert
  stat: "path=/etc/easy-rsa/2.0/keys/{{ inventory_hostname }}.crt"
- 
  name: "Copying Server certificate"
  shell: "cp -rpvf /etc/easy-rsa/2.0/keys/{{ inventory_hostname }}.crt /etc/openvpn/"
  when: "ServerCert.stat.exists  == true"
- 
  failed_when: "ServerKey.stat.exists  == false"
  name: "Check if Server key exist"
  register: ServerKey
  stat: "path=/etc/easy-rsa/2.0/keys/{{ inventory_hostname }}.key"
- 
  name: "Copying Server key"
  shell: "cp -rpvf /etc/easy-rsa/2.0/keys/{{ inventory_hostname }}.key /etc/openvpn/"
  when: "ServerKey.stat.exists  == true"
- 
  file: "src=/etc/easy-rsa/2.0/keys/dh512.pem dest=/etc/openvpn/dh512.pem state=link"
  name: "Create symlink for Diffie Hellman"
Jupiter Hu's avatar
Change to use template for configuration files  
Jupiter Hu committed
32 33 34 
- name: "Copying server.conf to the OpenVPN server"
  template: src=server.conf.j2 dest=/etc/openvpn/server.conf
  notify: restart openvpn
Shahaan Ayyub's avatar
Adding easy-rsa Client and Server Roles, Along with OpenVPN-Server
Shahaan Ayyub committed
35