Skip to main content

Certificates

With the osism.commons.certificates role, it is possible to add custom CA certificates on a node. The parameter should be used in the environments/configuration.yml file.

environments/configuration.yml
certificates_ca:
- name: custom.crt
certificate: |
-----BEGIN CERTIFICATE-----
[...]
-----END CERTIFICATE-----

The role is part of the bootstrap of a node. CA certificates can be added at a later point in time via osism apply certificates on a node.

Further details on the use of self-signed certificates can be found in chapter Self-signed certificates of the configuration guide.