community / community.network / 0.2.1 / module / panos_cert_gen_ssh
Removed in 2.0.0
Reason:Consolidating code base. | Alternative:Use U(https://galaxy.ansible.com/PaloAltoNetworks/paloaltonetworks) instead.
generates a self-signed certificate using SSH protocol with SSH key
Authors: Luigi Mori (@jtschichold), Ivan Bojer (@ivanbojer)
Install with ansible-galaxy collection install community.network:==0.2.1
collections: - name: community.network version: 0.2.1
This module generates a self-signed certificate that can be used by GlobalProtect client, SSL connector, or
otherwise. Root certificate must be preset on the system first. This module depends on paramiko for ssh.
# Generates a new self-signed certificate using ssh - name: Generate self signed certificate panos_cert_gen_ssh: ip_address: "192.168.1.1" password: "paloalto" cert_cn: "1.1.1.1" cert_friendly_name: "test123" signed_by: "root-ca"
cert_cn: description: - Certificate CN (common name) embedded in the certificate signature. required: true password: description: - Password credentials to use for auth. Either I(key_filename) or I(password) is required. required: true rsa_nbits: default: '2048' description: - Number of bits used by the RSA algorithm for the certificate generation. signed_by: description: - Undersigning authority (CA) that MUST already be presents on the device. required: true ip_address: description: - IP address (or hostname) of PAN-OS device being configured. required: true key_filename: description: - Location of the filename that is used for the auth. Either I(key_filename) or I(password) is required. required: true cert_friendly_name: description: - Human friendly certificate name (not CN but just a friendly name). required: true