openssl pkcs12 equivalent ansible module

[baoj-dfo]

what are equivalent ansible module for achieve these command ?

openssl pkcs12 -in $file -nocerts -nodes -out $certKey
openssl pkcs12 -in $file -clcerts -nokeys -out $certPem

I've looked on openssl_privatekey, openssl_privatekey_info, openssl_pkcs12, openssl_privatekey_info, none of them can

[felixfontein]

There is no equivalent of these commands. The openssl_pkcs12 module can dump the private key, certificate, and CA certs into a single file, which comes close to what you want.

[baoj-dfo]

@felixfontein , thanks for your quick answer.

what are the output format of azure_rm_keyvaultkey_info and azure_rm_keyvaultsecret_info when retrieving certificate from Azure keyvault ? how to convert to PEM format ?

for azure_rm_keyvaultkey_info, I get its output['keys'][0].key
for azure_rm_keyvaultsecret_info, I get its output.secrets[0].secret

[felixfontein]

I don't know, you'll have to check the documentation of the Azure collection containing these modules.

[baoj-dfo]

I've spend lots time try to figure out its equivalence for
az keyvault secret download --vault-name $vault -n $cert -f $file --encoding base64

with no luck, any one else can help?

Most likely I have to use az cli instead of Azure collection module :(