-
Feature Request
-
Resolution: Unresolved
-
Undefined
-
None
-
None
-
False
-
-
False
Feature Overview
Ensure all applicable credentials have an available verify_ssl option available for selection.
Some do, many don't as of 2.2
Background, and strategic fit
Some, like "Red Hat Satellite 6", need source variables configured in order to disable the SSL certificate verification like this:
validate_certs: no
This is overhead for a user. It should be available directly in the platform for use.
Credential Review
Here is what we have as of Weds 10th Aug 2022 in AAP 2.2:
| Credential | verify_ssl option? |
|---|---|
| Amazon Web Services | no |
| Ansible Galaxy/Automation Hub API Token | no |
| Centrify Vault Credential Provider Lookup | no |
| Container Registry | yes |
| CyberArk AIM Central Credential Provider Lookup | yes |
| CyberArk Conjur Secret Lookup | no |
| GitHub Personal Access Token | no |
| GitLab Personal Access Token | no |
| Google Compute Engine | no |
| HashiCorp Vault Secret Lookup | no |
| HashiCorp Vault Signed SSH | no |
| Insights | no |
| Machine | no |
| Microsoft Azure Key Vault | no |
| Microsoft Azure Resource Manager | no |
| Network | no |
| OpenShift or Kubernetes API Bearer Token | yes |
| OpenStack | yes |
| Red Hat Ansible Automation Platform | yes |
| Red Hat Satellite 6 | no |
| Red Hat Virtualization | no |
| Source Control | no |
| Thycotic DevOps Secrets Vault | no |
| Thycotic Secret Server | no |
| Vault | no |
| VMware vCenter | no |
There are some discrepancies in the wording in the UI for verify SSL, including "Verify SSL Certificates" and just "Verify SSL". This should be standardised and cleaned up at the same time.