djpbessems/Packer.Images
1
1
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
7 Commits 10 Branches 2 Tags
1fadf7e817a716131cd0a36d215c145669904cca
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
djpbessems 1fadf7e817
Some checks failed
continuous-integration/drone/push Build is failing
Details
Apply upstream fix
2021-02-22 09:03:58 +01:00
packer
Add upstream changes
2021-02-15 09:24:21 +01:00
scripts
Apply upstream fix
2021-02-22 09:03:58 +01:00
.drone.yml
Always perform cleanup
2021-02-15 10:55:17 +01:00
README.md
Add upstream changes
2021-02-15 09:24:21 +01:00

README.md

Packer.Images Build Status

This OVA appliance allows deploying an Active Directory Certificate Authority fully automated:

The included .ovf file has the following XML contents (simplified for clarity) to facilitate the different DeploymentOptions:

<Envelope [...]>
  [...]
  <DeploymentOptionSection>
    <Info>Deployment Type</Info>
    <Configuration ovf:id="standalone-root">
      <Label>Root Certificate Authority</Label>
      <Description>Root CA with self-signed certificate; should be kept turned off</Description>
    </Configuration>
    <Configuration ovf:id="enterprise-intermediate">
      <Label>Subordinate enterprise Certificate Authority</Label>
      <Description>Subordinate CA on domain-member server; kept online to service certificate requests/enrollment and host CRL</Description>
    </Configuration>
    <Configuration ovf:id="standalone-intermediate">
      <Label>Subordinate standalone Certificate Authority</Label>
      <Description>Subordinate CA on standalone server; kept online to service certificate requests and host CRL</Description>
    </Configuration>
  </DeploymentOptionSection>
  <VirtualSystem ovf:id="[...]">
    [...]
    <ProductSection>
      [...]
      <Category>1) Operating System</Category>
      <Property ovf:configuration="standalone-root enterprise-intermediate standalone-intermediate" ovf:key="guestinfo.hostname" [...]>
        <Label>Hostname*</Label>
      </Property>
      [...]
      <Category>3) Active Directory Certificate Services</Category>
      <Property ovf:configuration="secondary" ovf:key="adcsconfig.foo" [...]>
        <Label>Foo*</Label>
      </Property>
      [...]
      </Property>
    </ProductSection>
  </VirtualSystem>
</Envelope>

When provisioning the appliance through the vCenter 'Deploy OVF template...' wizard, or through vApp-compatible Infrastructure as code tooling (e.g. HashiCorp Terraform), it is possible to provide all relevant configuration through vApp properties.

vSphere 'Deploy OVF template...' wizard HashiCorp Terraform vSphere provider
vApp properties
vApp properties		 
  vapp {
    properties = {
      # "deployment.type"            = "standalone-root"
      
      "guestinfo.hostname"         = "CA01"
      "guestinfo.ipaddress"        = "10.0.0.42"
      "guestinfo.prefixlength"     = "24"
      "guestinfo.dnsserver"        = "10.0.0.21"
      "guestinfo.gateway"          = "10.0.0.1"

      "adcsconfig.foo"             = "..."
      "adcsconfig.bar"             = "..."
    }
  }

On first boot, the appliance will start configuring itself without any further user-input, by performing the following steps:

  • WIP
Description
No description provided
Readme 3.8 MiB
Languages
PowerShell 97.5%
HCL 2.5%