roles/samba: Manage LDAP TLS certificates

This commit adds tasks to the *samba-dc* role to install TLS
certificates for the Samba LDAP server, and configures Samba to use
them.

certs/samba/dc0.pyrocufflink.blue/openssl.cnf

@@ -0,0 +1,20 @@
+# vim: set ft=dosini :
+
+[req]
+prompt = no
+default_md = sha256
+distinguished_name = req_distinguished_name
+req_extensions = req_extensions
+
+[req_distinguished_name]
+countryName = US
+organizationName = Dustin C. Hatch
+commonName = dc0.pyrocufflink.blue
+
+[req_extensions]
+subjectAltName = @alt_names
+
+[alt_names]
+DNS.0 = dc0.pyrocufflink.blue
+DNS.1 = dc0
+DNS.2 = pyrocufflink.blue