CA Certificate Management

Simon Murray



7,983 latest version

4.5 quality score

Version information

  • 1.1.0 (latest)
  • 1.0.0
released Aug 20th 2015
This version is compatible with:
  • Ubuntu

Start using this module


spjmurray/ca_certificate — version 1.1.0 Aug 20th 2015

#CA Certificate

Build Status

####Table Of Contents

  1. Overview
  2. Module Description
  3. Usage
  4. Limitations


Installs a CA certificate into OpenSSL's trusted store and optionally Java's

###Module Description

Installs distro certificates, installs the requested CA, trusts the certificate then regenerates the trusted SSL directory. The CA to install can be a file resource, raw content, or an existing file on the host.

Java support injects the requested certificate into the requested store.


OpenSSL only

ca_certificate { 'puppet-ca':
  source => '/var/lib/puppet/ssl/certs/ca.pem',

OpenSSL and Java

ca_certificate { 'puppet-ca':
  source         => '/var/lib/puppet/ssl/certs/ca.pem',
  java           => true,
  java_keystore  => '/etc/ssl/certs/java/cacerts',
  java_storepass => 'changeit',


  1. Ubuntu only