Task #7184
Story #7183: Update wild card server certificate on all test.dataone.org systems
Create an Ansible script that can replace a server certificate
Start date:
2015-06-15
Due date:
% Done:
0%
Milestone:
None
Product Version:
*
Story Points:
Sprint:
Description
Ansible can significantly reduce the effort associated with deploying a new certificate to a bunch of servers.
Goal of this task is to create an ansible script that can:
- Backup the current certificate, key, and chain
- Upload the new certificate, key, and chain
- Rehash the certs
- Restart the web server
Should assume that the replacement certificate will be the same file name as the original, and that the file names will be standard across the targets.
The script can be stored under https://repository.dataone.org/software/tools/trunk/ansible_scripts
