Ben Vincent
14790f8277
- import pki, ssh, kv, rundeck engines - deploy all roles from terraform - deploy all policies from terraform - deploy all approles from terraform
19 lines
661 B
HCL
19 lines
661 B
HCL
#--------------------------------------------------------------
|
|
# ssh-host-signer
|
|
# create engine
|
|
# generate ca cert
|
|
# tune the ssh engine
|
|
#--------------------------------------------------------------
|
|
#resource "vault_mount" "ssh_host_signer" {
|
|
# path = "ssh-host-signer"
|
|
# type = "ssh"
|
|
# description = "SSH Host Signing Engine"
|
|
# max_lease_ttl_seconds = 87600 * 3600
|
|
#}
|
|
#
|
|
#resource "vault_ssh_secret_backend_ca" "ssh_host_signer_ca" {
|
|
# backend = vault_mount.ssh_host_signer.path
|
|
# generate_signing_key = false # change to true for new configuration
|
|
# key_type = "ssh-rsa"
|
|
#}
|