ansible / ansible.builtin / v2.9.24 / module / _panos_cert_gen_ssh
Removed in 2.12
Reason:Consolidating code base. | Alternative:Use U(https://galaxy.ansible.com/PaloAltoNetworks/paloaltonetworks) instead.
generates a self-signed certificate using SSH protocol with SSH key
| "added in version" 2.3 of ansible.builtin"
Authors: Luigi Mori (@jtschichold), Ivan Bojer (@ivanbojer)
deprecated | supported by community
pip
Install with pip install ansible==2.9.24
This module generates a self-signed certificate that can be used by GlobalProtect client, SSL connector, or
otherwise. Root certificate must be preset on the system first. This module depends on paramiko for ssh.
# Generates a new self-signed certificate using ssh - name: generate self signed certificate panos_cert_gen_ssh: ip_address: "192.168.1.1" password: "paloalto" cert_cn: "1.1.1.1" cert_friendly_name: "test123" signed_by: "root-ca"
cert_cn: description: - Certificate CN (common name) embedded in the certificate signature. required: true password: description: - Password credentials to use for auth. Either I(key_filename) or I(password) is required. required: true rsa_nbits: default: '2048' description: - Number of bits used by the RSA algorithm for the certificate generation. signed_by: description: - Undersigning authority (CA) that MUST already be presents on the device. required: true ip_address: description: - IP address (or hostname) of PAN-OS device being configured. required: true key_filename: description: - Location of the filename that is used for the auth. Either I(key_filename) or I(password) is required. required: true cert_friendly_name: description: - Human friendly certificate name (not CN but just a friendly name). required: true