11896 – Ansible: Install LE certificates on all servers

Bug 11896 - Ansible: Install LE certificates on all servers

Summary: Ansible: Install LE certificates on all servers

Status:	CLOSED FIXED

Alias:	None

Product:	Infrastructure
Classification:	Unclassified
Component:	Mail & Mailing Lists (show other bugs)
Version:	unspecified
Hardware:	all All

Importance:	- Unknown - Security
Assignee:	Timo Eissler
QA Contact:	Michael Tremer

URL:
Keywords:

Depends on:
Blocks:	ANSIBLE 11897 INTERNALSTARTTLS
	Show dependency tree / graph

Reported:	2018-10-04 18:32 UTC by Peter Müller
Modified:	2019-08-01 12:15 UTC (History)
CC List:	0 users

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Peter Müller 2018-10-04 18:32:17 UTC

In order to make internal mail delivery via STARTTLS with DANE validation possible, every server needs a valid certificate.

Please integrate the distribution of the Certbot cronjob into Ansible and deploy it. I suspect Michael is more deeply into this infrastructure topic than I am.

Comment 1 Michael Tremer 2019-08-01 12:15:12 UTC

This has now been rolled out throughput the whole infrastructure.