26 lines
478 B
YAML
26 lines
478 B
YAML
# vim: set ft=yaml.jinja :
|
|
|
|
- name: enroll uefi mok
|
|
shell: |
|
|
mokutil --import /etc/pki/tls/certs/dkms.der <<EOF
|
|
{{ vault_mok_password }}
|
|
{{ vault_mok_password }}
|
|
EOF
|
|
notify:
|
|
- reboot notify
|
|
- reboot the system
|
|
tags:
|
|
- mok
|
|
|
|
- name: reboot notify
|
|
pause:
|
|
prompt: >-
|
|
The machine will now reboot and you must manually enroll the MOK.
|
|
Pres ENTER to continue
|
|
|
|
- name: reboot the system
|
|
reboot:
|
|
reboot_timeout: 300
|
|
tags:
|
|
- reboot
|