sslcertificate: Author:: Paul Stack (mailto:[email protected]) Copyright:: Copyright (c) 2013 OpenTable Inc License:: MIT == Define: sslcertificate
Author:: Paul Stack (mailto:[email protected]) Copyright:: Copyright (c) 2013 OpenTable Inc License:: MIT == Define: sslcertificate
This defined type will install SSL Certs on windows
=== Requirements/Dependencies
Currently reequires the puppetlabs/stdlib module on the Puppet Forge in order to validate much of the the provided configuration.
=== Parameters
[password] The password for the given certificate By default is undef
[location] The location to store intermediate certificates. Do not end the string with any forward or backslash.
[thumbprint] The thumbprint used to verify the certificate
[store_dir] The certificate store where the certificate will be installed to
[root_store] The store location for the given certification store. Either LocalMachine or CurrentUser
[scripts_dir] This parameter has been deprecated and is no longer used.
[exportable] This parameter determines whether the certificate key is exportable or not.
[wildcard] This parameter determines whether the certificate is a wildcard certificate or not.
[interstore] This parameter determines whether the certificate is an intermediate certificate or not.
=== Examples
To install a certificate in the My directory of the LocalMachine root store:
sslcertificate { "Install-PFX-Certificate" : name => 'mycert.pfx', password => 'password123', location => 'C:', thumbprint => '07E5C1AF7F5223CB975CC29B5455642F5570798B' }
To install a certifcate in an alternative directory:
sslcertificate { "Install-Intermediate-Certificate" : name => 'go_daddy_intermediate.p7b', location => 'C:', store_dir => 'CA', root_store => 'LocalMachine', thumbprint => '07E5C1AF7F5223CB975CC29B5455642F5570798B' }
To install a certificate in the My directory of the LocalMachine root store and set the key as not exportable:
sslcertificate { "Install-PFX-Certificate" : name => 'mycert.pfx', password => 'password123', location => 'C:', thumbprint => '07E5C1AF7F5223CB975CC29B5455642F5570798B', exportable => false }
The following parameters are available in the sslcertificate defined type:
Data type: String[1]
Data type: String[1]
Data type: Optional[String[1]]
Default value: undef
Data type: String[1]
Default value: 'LocalMachine'
Data type: String[1]
Default value: 'My'
Data type: Stdlib::Windowspath
Default value: 'C:\temp'
Data type: Boolean
Default value: true
Data type: Boolean
Default value: false
Data type: Boolean
Default value: false