Skip to content

5 HTTP 01 Challenge Completion

Jump to bottom
Colin Stubbs edited this page Jun 11, 2020 · 2 revisions

HTTP-01 Challenge Completion

You need to install an iRule and create an appropriate data group.

iRule content

Data Group config definition

Example output from testing that the iRule and DG is working when associated with a VS

Configure using Ansible playbook,

[user@host ~]$ ansible-playbook --vault-password-file ~/.ansible/vault.pass --inventory /etc/dehydrated/ansible/bigip-inventory.ini --extra-vars "save_config=1 sync_config=0 bigip_partition=Common" /etc/dehydrated/ansible/playbooks/bigip-configure-acme-http-01.yml 

PLAY [version] *********************************************************************************************************************************************

TASK [setup provider] **************************************************************************************************************************************
ok: [192.0.2.4]

TASK [Wait for BIG-IP to be available] *********************************************************************************************************************
ok: [192.0.2.4 -> localhost]

TASK [Create ACME HTTP-01 challenge response iRule] ********************************************************************************************************
changed: [192.0.2.4 -> localhost]

TASK [Create a data group for ACME HTTP-01 validation] *****************************************************************************************************
changed: [192.0.2.4 -> localhost]

TASK [Save the running configuration of the BIG-IP] ********************************************************************************************************
changed: [192.0.2.4 -> localhost]

TASK [Sync configuration from device to group] *************************************************************************************************************
skipping: [192.0.2.4]

PLAY RECAP *************************************************************************************************************************************************
192.0.2.4                  : ok=5    changed=3    unreachable=0    failed=0    skipped=1    rescued=0    ignored=0   

[user@host ~]$
Clone this wiki locally