To report a problem or share an idea, use Issues; and if you have a suggestion for fixing the issue, please include those details, too. In addition, use Pull Requests to contribute actual bug fixes or proposed enhancements.
We welcome and appreciate all contributions. Got questions or want to discuss something with our team?
Join us on Slack!
This collection, called machine_identity, uses CyberArk Certificate Manager, Self-Hosted or CyberArk Certificate Manager, SaaS to provide keys and certificates to Ansible solutions that require machine identity management.
If you like this collection, please give us a rating on Ansible Galaxy.
Review the CyberArk prerequisites, and depending on the source:
- Install VCert-Python (v0.11.2 or higher) using
pip:
pip install vcert --upgrade- Install both Ansible and VCert-Python (v0.11.2 or higher) using
pip:
pip install ansible vcert --upgradeThis collection depends on vcert-python. Due to this, collection requires Python 3.6 or greater.
CyberArk has also announced the end of support for Python less than 3.6. As such support for Python less than 3.6 by this collection has been deprecated.
This collection has been tested against the following Ansible versions: >= 2.13
You can install the venafi.machine_identity collection with the Ansible Galaxy CLI:
ansible-galaxy collection install venafi.machine_identity
You can also include it in a requirements.yml file and install it with ansible-galaxy collection install -r requirements.yml, using the format:
---
collections:
- name: venafi.machine_identityA specific version of the collection can be installed by using the version keyword in the requirements.yml file:
---
collections:
- name: venafi.machine_identity
version: 0.10.0The python module dependencies are not installed by ansible-galaxy. They can
be manually installed using pip:
pip install -r requirements.txt
or:
pip install vcert ansible cryptography
venafi.machine_identity.certificate: Enrolls a certificate and optionally deploys it to a remote location.venafi.machine_identity.policy: Creates or updates certificate policy on CyberArk Certificate Manager, SaaS or CyberArk Certificate Manager, Self-Hosted using a specification file.venafi.machine_identity.ssh_certificate: Enrolls an SSH certificate using CyberArk Certificate Manager, Self-Hosted.venafi.machine_identity.ssh_ca: Retrieves public keys of SSH certificate authorities hosted by CyberArk Certificate Manager, Self-Hosted.
Only the latest release of this collection is supported.
As Red Hat Ansible Certified Content, this collection is entitled to support through the Ansible Automation Platform (AAP) using the Create issue button in the top right corner. If a support case cannot be opened with Red Hat and the collection has been obtained either from Galaxy or GitHub, you can raise a GitHub Issue directly with the developers here or get community help available on the Ansible Forum.
Copyright © Venafi, Inc. and CyberArk Software Ltd. ("CyberArk")
This solution is licensed under the Apache License, Version 2.0. See LICENSE for the full license text.
Please direct questions/comments to [email protected]