Requirements

The collection requires the Python cryptography library installed on the controller, available to the Python version used to execute the playbook. If cryptography is not installed, a recent enough version of PyOpenSSL is currently supported as a fallback by the community.crypto.openssl_privatekey and community.crypto.openssl_csr modules.

The openssl binary must also be available in the executable path on the controller. It is needed by the community.crypto.acme_certificate module in case cryptography is not installed, and it is used for certificate chain validation.

If DNS challenges are used, there can be other requirements depending on the DNS provider. For example, for Amazon’s Route 53, the Ansible amazon.aws.route53 module requires the Python boto package. If Hosttech DNS challenges are used, the lxml package needs to be installed. If DNS challenges with NS1 or INWX are used, the corresponding modules respectively collections must be installed. See below for more information.