github.com/Venafi/vcert/v5@v5.10.2/examples/ansible/testvcertplaybook.yaml

github.com/Venafi/vcert/v5@v5.10.2/examples/ansible/testvcertplaybook.yaml (about)

     1  config:
     2    connection:
     3      platform: vaas
     4      credentials:
     5        tokenURL: <Your Service Account Token URL - Copy from VCP> 
     6        externalJWT: '{{ Env "TLSPC_EXTERNAL_JWT" }}'
     7  certificateTasks:
     8    - name: appcert
     9      setEnvVars: #delete the environment variables that you do not need.  
    10        - "thumbprint"     #VCERT_TASKNAME_THUMBPRINT
    11        - "serial"         #VCERT_TASKNAME_SERIAL
    12        - "base64"         #VCERT_TASKNAME_BASE64
    13      renewBefore: 31d
    14      request: #change the request parameters to fit your certificate needs.
    15        csr: local
    16        subject:
    17          commonName: 'myapp.corp.net' 
    18        sanDNS: 
    19          - 'myapp.corp.net'
    20        zone: "<myapp>\\<issuingtemplate>"
    21      installations:
    22        - format: PEM
    23          file: "./cert.cer"
    24          chainFile: "./chain.cer"
    25          keyFile: "./key.pem" 
    26          backupFiles: false
    27          #replace "TASKNAME" below with the name of the certificxate task that the after install action will run for. Example: VCERT_APPCERT_SERIAL
    28          afterInstallAction: "echo $VCERT_TASKNAME_THUMBPRINT $VCERT_TASKNAME_SERIAL $VCERT_TASKNAME_BASE64"