github.com/Venafi/vcert/v5@v5.10.2/examples/playbook/sample.capi.yaml

github.com/Venafi/vcert/v5@v5.10.2/examples/playbook/sample.capi.yaml (about)

     1  config:
     2    connection:
     3      platform: tpp
     4      url: https://my.tpp.instance.company.com # URL to TPP instance
     5      trustBundle: /path/to/my/trustbundle.pem # Optional TrustBundle for TPP connection
     6      credentials:
     7        accessToken: '{{ Env "TPP_ACCESS_TOKEN" }}'
     8        refreshToken: '{{ Env "TPP_REFRESH_TOKEN" }}'
     9  certificateTasks:
    10    - name: MSSQL TLS Certificate
    11      renewBefore: 31d
    12      request:
    13        csr: local
    14        subject:
    15          # Templating needs to go between single quotes to avoid issues when refreshing tokens
    16          commonName: '{{ Hostname | ToLower -}}.{{- Env "USERDNSDOMAIN" | ToLower }}'
    17          country: US
    18          locality: Salt Lake City
    19          state: Utah
    20          organization: Venafi, Inc.
    21          orgUnits:
    22            - engineering
    23            - marketing
    24          sanDNS:
    25            - '{{ Hostname | ToLower -}}.{{- Env "USERDNSDOMAIN" | ToLower }}'
    26            - sqldb.example.com
    27        zone: "Open Source\\vcert"
    28      installations:
    29        - format: CAPI
    30          capiLocation: LocalMachine\MY
    31          capiFriendlyName: Venafi vCert Managed - MSSQL TLS
    32          capiIsNonExportable: True
    33