{"id":27226224,"url":"https://github.com/keylime/ansible-keylime","last_synced_at":"2025-04-10T11:55:05.585Z","repository":{"id":47075388,"uuid":"181149942","full_name":"keylime/ansible-keylime","owner":"keylime","description":"Ansible Role to Deploy Keylime","archived":false,"fork":false,"pushed_at":"2023-09-07T14:51:51.000Z","size":39,"stargazers_count":5,"open_issues_count":5,"forks_count":19,"subscribers_count":5,"default_branch":"master","last_synced_at":"2024-04-20T09:08:43.003Z","etag":null,"topics":["ansible","keylime","tpm"],"latest_commit_sha":null,"homepage":"https://keylime.dev","language":null,"has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/keylime.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2019-04-13T09:38:47.000Z","updated_at":"2023-09-22T08:12:25.000Z","dependencies_parsed_at":"2023-02-10T18:31:20.451Z","dependency_job_id":null,"html_url":"https://github.com/keylime/ansible-keylime","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/keylime%2Fansible-keylime","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/keylime%2Fansible-keylime/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/keylime%2Fansible-keylime/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/keylime%2Fansible-keylime/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/keylime","download_url":"https://codeload.github.com/keylime/ansible-keylime/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":248215196,"owners_count":21066622,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["ansible","keylime","tpm"],"created_at":"2025-04-10T11:55:04.837Z","updated_at":"2025-04-10T11:55:05.577Z","avatar_url":"https://github.com/keylime.png","language":null,"funding_links":[],"categories":[],"sub_categories":[],"readme":"# Ansible Keylime\n\n[![Build Status](https://travis-ci.org/keylime/ansible-keylime.svg?branch=master)](https://travis-ci.org/keylime/ansible-keylime) [![Gitter chat](https://badges.gitter.im/gitterHQ/gitter.png)](https://gitter.im/keylime-project/community)\n\nAnsible role to deploy [Keylime](https://github.com/keylime/keylime) with the [rust implementation of the keylime agent](https://github.com/keylime/rust-keylime) against\na Hardware TPM.\n\nThe role is currently configured to work with Fedora 35.\n\nContributions are welcome, should anyone wish to have this role provision other\nLinux distributions.\n\nFor details on using Keylime, please consult the\n[project documentation](https://keylime-docs.readthedocs.io/en/latest/)\n\n## Usage\n\nRun the example playbook against your target remote host(s).\n\n```bash\nansible-playbook -i your_hosts playbook.yml\n```\n\n## Get started with Keylime\n\nThe best way to get started is to read the [Keylime\nDocumentation](https://keylime-docs.readthedocs.io/en/latest/), however if\nyou're keen to get started right away, follow these steps.\n\nYou first need to decide on if you will use the revocation framework, if\nso you will need to install golang and set the following value in\n`/etc/keylime.conf`\n\n`ca_implementation = cfssl`\n\nAlternately you can set `openssl` which has no other dependencies.\n\nYou now need to start the following services.\n\n`# keylime_verifier`\n\n`# keylime_registrar`\n\nTo run the agent, navigate to the rust-keylime directory and start the agent. \n\n`# RUST_LOG=keylime_agent=trace cargo run --bin keylime_agent `\n\n| Note: Keylime Agent requires a TPM active that the agent can take ownership on|\n| --- |\n\nYou can now set up a use case, a good first scenario to try out would be [IMA\nIntegrity Monitoring](https://keylime-docs.readthedocs.io/en/latest/user_guide/runtime_ima.html)\n\nFor more detailed set up scenarios, see the [Keylime\ndocumentation](https://keylime-docs.readthedocs.io/en/latest/user_guide/runtime_ima.html)\n\n## License\n\nApache 2.0\n\n## Contribute\n\nPlease do! Pull requests are welcome.\n\nPlease ensure CI tests pass!\n\n## Contributors\n\n* Luke Hinds (lhinds@redhat.com)\n* Leo Jia (ljia@redhat.com )\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fkeylime%2Fansible-keylime","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fkeylime%2Fansible-keylime","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fkeylime%2Fansible-keylime/lists"}