apache_tls

Ansible Galaxy role cesnet.apache_tls that installs Apache HTTPD and configures TLS (Transport Layer Security) correctly to pass the SSLLabs Server Test with A+ rating.

Installs certificate chains for "GEANT OV RSA CA 4" and "GEANT OV ECC CA 4". It also enables HTTP2 protocol and cronolog for daily log rotation.

It does not set up any web sites.

Requirements

Role Variables

certs_dir - the directory for storing CA certs, default is /etc/ssl/localcerts
geant_rsa_chain_file - path to file with "GEANT OV RSA CA 4" cert chain, default "{{certs_dir}}/geant_ov_rsa_ca_4.pem"
geant_ecc_chain_file - path to file with "TERENA SSL CA 3" cert chain, default is "{{certs_dir}}/geant_ov_ecc_ca_4.pem"

Example Playbook

- hosts: all
  roles:
    - role: cesnet.apache_tls
      vars:
        certs_dir: /etc/apache2/ssl

Name		Name	Last commit message	Last commit date
Latest commit History 8 Commits
defaults		defaults
handlers		handlers
meta		meta
tasks		tasks
.gitignore		.gitignore
LICENSE		LICENSE
README.md		README.md

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

defaults

defaults

handlers

handlers

meta

meta

tasks

tasks

.gitignore

.gitignore

LICENSE

LICENSE

README.md

README.md

Repository files navigation

apache_tls

Requirements

Role Variables

Example Playbook

About

Releases

Packages

License

CESNET/ansible-role-apache-tls

Folders and files

Latest commit

History

Repository files navigation

apache_tls

Requirements

Role Variables

Example Playbook

About

Resources

License

Stars

Watchers

Forks