github.com/Venafi/vcert/v5@v5.10.2/examples/playbook/sample.tlspc.svc-account.yaml (about)

     1  config:
     2    connection:
     3      platform: TLSPC # alternatively, VAAS can be used
     4      credentials:
     5        tenantId: '{{ Env "TLSPC_TENANT_ID" }}' # TLSPC tenant ID as environment variable
     6        externalJWT: '{{ Env "TLSPC_EXTERNAL_JWT" }}' # JWT from Identity Provider as environment variable
     7        #externalJWT: 'file:/path/to/jwt' # JWT from Identity Provider as file
     8  certificateTasks:
     9    - name: myCertificate # Task Identifier, no relevance in tool run
    10      renewBefore: 31d
    11      request:
    12        csr: local
    13        subject:
    14          # Templating needs to go between single quotes to avoid issues when refreshing tokens and saving back
    15          commonName: '{{ Hostname | ToLower -}}.{{- Env "USERDNSDOMAIN" | ToLower }}'
    16          country: US
    17          locality: Salt Lake City
    18          state: Utah
    19          organization: Venafi Inc
    20          orgUnits:
    21            - engineering
    22            - marketing
    23        zone: "Open Source\\vcert"
    24      installations:
    25        - format: PEM
    26          file: "/path/to/my/certificate/cert.cer"
    27          chainFile: "/path/to/my/certificate/chain.cer"
    28          keyFile: "/path/to/my/certificate/key.pem"
    29          afterInstallAction: "echo Success!!!"