1 # ********************************************************************************
2 # DEPRECATED: Use tripleo-heat-templates/environments/ssl/enable-internal-tls.yaml
4 # ********************************************************************************
5 # A Heat environment file which can be used to enable a
6 # a TLS for in the internal network via certmonger
8 EnableInternalTLS: true
9 RabbitClientUseSSL: true
11 # Required for novajoin to enroll the overcloud nodes
16 OS::TripleO::Services::CertmongerUser: ../puppet/services/certmonger-user.yaml
18 OS::TripleO::Services::HAProxyInternalTLS: ../puppet/services/haproxy-internal-tls-certmonger.yaml
20 # We use apache as a TLS proxy
21 OS::TripleO::Services::TLSProxyBase: ../puppet/services/apache.yaml
23 # Creates nova metadata that will create the extra service principals per
25 OS::TripleO::ServiceServerMetadataHook: ../extraconfig/nova_metadata/krb-service-principals.yaml