mirror of https://github.com/geerlingguy/ansible-for-devops.git synced 2024-05-19 06:50:03 +00:00

Files

githubERIK 5353048216 Correct ansible installation link

Invalid: http://docs.ansible.com/intro_installation.html
Valid: https://docs.ansible.com/ansible/latest/installation_guide/intro_installation.html

2021-06-23 13:34:07 +03:00

2018-09-15 22:38:08 -05:00

2019-08-20 13:11:55 -05:00

2020-07-22 12:30:06 -05:00

.gitignore

2018-09-15 22:38:08 -05:00

ansible.cfg

2018-09-15 22:38:08 -05:00

inventory.example

2020-05-12 23:11:40 -05:00

main.yml

2020-07-24 16:51:18 -05:00

README.md

2021-06-23 13:34:07 +03:00

requirements.yml

2020-07-24 16:36:24 -05:00

HTTPS Let's Encrypt Demo

This demonstrates generating valid TLS certificates using Let's Encrypt and Certbot on a public web server.

Quick Start Guide

Create a publicly-accessible VM running Ubuntu 20.04 (on your favorite cloud provider, like AWS, DigitalOcean, etc.).
Point a valid domain name at this server's IP address (e.g. using Route53 or your DNS provider).
Make sure your SSH key is added to your user account, and your account has sudo access.
Make sure you can SSH into the server using ssh myuser@subdomain.example.com (where subdomain.example.com is the domain name you have pointed at the server's IP address).

Copy the inventory.example to inventory, and change:

The server name under the [letsencrypt] group to the domain name pointed at your new server.
The value for letsencrypt_email to an email address you control.

Run the Ansible playbook to automatically generate a Let's Encrypt certificate and use it in an example Nginx configuration:

ansible-playbook -i inventory main.yml

After the playbook completes, visit your site at the https URL and verify it works with a valid certificate: https://domain.example.com/

Or use openssl on the command line to verify the certificate details:

openssl s_client -showcerts -connect domain.example.com:443

This project was created by Jeff Geerling as an example for Ansible for DevOps.