- Overview
- Module Description - What the module does and why it is useful
- Setup - The basics of getting started with x509
- Usage - Configuration options and additional functionality
- Reference - An under-the-hood peek at what the module is doing and how
- Limitations - OS compatibility, etc.
- Development - Guide for contributing to the module
Manage X.509 certificates and PEM private keys on Debian systems. Fully Hiera integrated, but lives without if you store certs nd keys in the module directory.
This module configures the /etc/x509 directory as per-Debian design [https://wiki.debian.org/X.509]
You can use Hiera to store certs and keys, or you can store those in the module directory.
The module defines three resources: ca, cert and key, one for each of the cited Debian directory structure.
- Create /etc/x509 and its subdirs
- Populate the directory tree with certificates ans private keys
Install via module manager:
puppet module install upaternostro-x509
x509::ca { 'pki.yourdomain.com' } -> /etc/x509/ca/pki.yourdomain.com.crt x509::cert { 'www.yourdomain.com' } -> /etc/x509/certs/www.yourdomain.com.crt x509::key { 'www.yourdomain.com' } -> /etc/x509/keys/www.yourdomain.com.key
x509 ca cert key
Tested on Debian 7
Fork me on GitHub! https://github.com/upaternostro/upaternostro-x509