You must do the following before setting up secure communications with Ansible:
- Enable secure client communication in Ops Center Automator.
- Create the Ops Center Automator SSL certificate with the required host name in CN (Common Name) or SAN(Subject Alternative Name).
- In the Ansible Control Node, make sure the certificate file extension is .crt or .pem.
- Import the CA certificate or the Ops Center Automator self-signed certificate to the Linux certificate trust store.Note: SSL is enabled by default after a new Ops Center Automator installation. In an upgrade installation, Ops Center Automator retains the current SSL settings.
If you want to use a new certificate, see "Setting up SSL on the server for secure client communication (Linux OS)" or "Setting up SSL on the server for secure client communication (Windows OS)" in the Hitachi Ops Center Automator Installation and Configuration Guide.
- Complete the SSL settings between Common Services and the Ansible control node. For details, see "Configuring SSL communications" in the Hitachi Ops Center Automator Installation and Configuration Guide
Prepare the playbook (Ansible control node):