Zack Williams | c047c87 | 2017-01-11 08:38:15 -0700 | [diff] [blame] | 1 | --- |
| 2 | # pki-root-ca/defaults/main.yml |
Zack Williams | 43d62b5 | 2017-01-23 07:34:45 -0700 | [diff] [blame] | 3 | |
Andy Bavier | 1cac001 | 2017-03-13 10:06:18 -0400 | [diff] [blame] | 4 | pki_dir: "/opt/pki" |
| 5 | credentials_dir: "/opt/credentials" |
Zack Williams | c047c87 | 2017-01-11 08:38:15 -0700 | [diff] [blame] | 6 | |
| 7 | # ca parameters |
| 8 | ca_digest: "sha256" |
| 9 | ca_size: 4096 |
| 10 | ca_root_days: 3650 |
| 11 | |
| 12 | # passphrases for the key |
Andy Bavier | 1cac001 | 2017-03-13 10:06:18 -0400 | [diff] [blame] | 13 | ca_root_phrase: "{{ lookup('password', credentials_dir+'/ca_root_phrase length=64') }}" |
Zack Williams | c047c87 | 2017-01-11 08:38:15 -0700 | [diff] [blame] | 14 | |
| 15 | # noninteractive csr subject |
| 16 | ca_root_subj: "/C=US/ST=California/L=Menlo Park/O=ON.Lab/OU=Test Deployment/CN=CORD Test Deployment Root CA" |