This playbook demonstrates how to copy data to and from a z/OS system using modules included in the Red Hat Ansible Certified Content for IBM Z core collection.
This project contains playbooks and roles that demonstrates certificate renewal using RACF. The playbooks in this project are designed to address an end to end scenario managing z/OS certificates beginning with monitoring certificates using Health Checker, creating an authority and certificates, deleting certificates and even renewing them.
Although this is an end to end scenario, you can choose to run the individual playbooks if you are interested in one particular operation. Review the individual playbook for more details.
These playbook use:
collection:
ibm.ibm_zos_core
modules:
zos_tso_command
zos_operator
zos_job_submit
It is a good practice to review the playbook contents before executing them. It will help you understand the requirements in terms of space, location, names, authority, and the artifacts that will be created and cleaned up.
This playbook requires:
- Configure the included inventory.yml with the
information from the managed z/OS host.
- Review inventory documentation
- Configure the included host_vars zos_host.yml
with the information from your z/OS system.
- Review host_vars documentation and any additional noted variables in the configuration.
This project has several playbooks that you can run, choose a playbook-name
and substitute it in the command below to execute it.
ansible-playbook -i inventories <playbook-name>
- create_cert.yml - Create a SITE, CERTAUTH, or USER certificate.
- delete_cert.yml - Delete a certificate.
- create_keyring.yml - Create a keyring.
- delete_keyring.yml - Delete a keyring.
- list_cert.yml - Display a certificate details.
- health_checker_security - Set up security profile for accessing Health Checker functions. This must be run before search_and_renew.yml will work.
- search_and_renew.yml - Search and a renew a matching certificate found in the RACF_CERTIFCATE_EXPIRATION health check report.
All changes are maintained chronologically by date found in the changelog.
© Copyright IBM Corporation 2020, 2021
Licensed under Apache License, Version 2.0.
Please refer to the support section for more details.