From 34920f5fe560fcc479581efcfb2e4c88df744960 Mon Sep 17 00:00:00 2001
From: "Manuel J. Bernal" <manu.asi2@gmail.com>
Date: Wed, 29 Apr 2020 17:27:34 +0200
Subject: [PATCH] Added task to check if root ca already exist

---
 .../opendistro-elasticsearch/tasks/LocalActions.yml   | 11 +++++++++--
 1 file changed, 9 insertions(+), 2 deletions(-)

diff --git a/roles/opendistro/opendistro-elasticsearch/tasks/LocalActions.yml b/roles/opendistro/opendistro-elasticsearch/tasks/LocalActions.yml
index e33ce7e5..432a4423 100644
--- a/roles/opendistro/opendistro-elasticsearch/tasks/LocalActions.yml
+++ b/roles/opendistro/opendistro-elasticsearch/tasks/LocalActions.yml
@@ -34,7 +34,14 @@
     dest: /tmp/opendistro-nodecerts/config/tlsconfig.yml
   run_once: true
 
+- name: RedHat/CentOS/Fedora | Check if root CA file exists
+  local_action:
+    module: stat 
+    path: /tmp/opendistro-nodecerts/config/root-ca.key
+  register: root_ca_file
+
 - name: RedHat/CentOS/Fedora | Generate the node & admin certificates in local
   local_action:
-    module: command /tmp/opendistro-nodecerts/tools/sgtlstool.sh -c /tmp/opendistro-nodecerts/config/tlsconfig.yml -ca -crt -t /tmp/opendistro-nodecerts/config/ -f
-  run_once: true
\ No newline at end of file
+    module: command /tmp/opendistro-nodecerts/tools/sgtlstool.sh -c /tmp/opendistro-nodecerts/config/tlsconfig.yml -ca -crt -t /tmp/opendistro-nodecerts/config/ -f -o
+  run_once: true
+  when: root_ca_file.stat.exists == False
\ No newline at end of file