github.com/Venafi/vcert/v5@v5.10.2/examples/playbook/sample.capi-win2016.yaml

github.com/Venafi/vcert/v5@v5.10.2/examples/playbook/sample.capi-win2016.yaml (about)

     1  config:
     2    connection:
     3      platform: tpp
     4      url: https://my.tpp.instance.company.com # URL to TPP instance
     5      # trustBundle: /path/to/my/trustbundle.pem # Optional TrustBundle for TPP connection
     6      credentials:
     7        accessToken: '{{ Env "TPP_ACCESS_TOKEN" }}'
     8        refreshToken: '{{ Env "TPP_REFRESH_TOKEN" }}'
     9  certificateTasks:
    10    - name: IIS Default Website
    11      renewBefore: 31d
    12      request:
    13        csr: local
    14        subject:
    15          commonName: '{{ Hostname | ToLower -}}.{{- Env "USERDNSDOMAIN" | ToLower }}'
    16        zone: Certificates\vcert
    17      installations:
    18        - format: CAPI
    19          capiLocation: LocalMachine\MY
    20          capiFriendlyName: Venafi vCert Managed - IIS Default Website
    21          capiIsNonExportable: True
    22          useLegacyP12: True   # Win2016 requires legacy key wrapping (3DES-SHA1)