» vault_pki_secret_backend_intermediate_cert_request

Generates a new private key and a CSR for signing the PKI Secret Backend.

» Example Usage

resource "vault_pki_secret_backend_intermediate_cert_request" "test" {
  depends_on = [ "vault_pki_secret_backend.pki" ]

  backend = "${vault_pki_secret_backend.pki.path}"

  type = "internal"
  common_name = "app.my.domain"
}

» Argument Reference

The following arguments are supported:

  • backend - (Required) The PKI secret backend the resource belongs to.

  • type - (Required) Type of intermediate to create. Must be either \"exported\" or \"internal\"

  • common_name - (Required) CN of intermediate to create

  • alt_names - (Optional) List of alternative names

  • ip_sans - (Optional) List of alternative IPs

  • uri_sans - (Optional) List of alternative URIs

  • other_sans - (Optional) List of other SANs

  • format - (Optional) The format of data

  • private_key_format - (Optional) The private key format

  • key_type - (Optional) The desired key type

  • key_bits - (Optional) The number of bits to use

  • exclude_cn_from_sans - (Optional) Flag to exclude CN from SANs

  • ou - (Optional) The organization unit

  • organization - (Optional) The organization

  • country - (Optional) The country

  • locality - (Optional) The locality

  • province - (Optional) The province

  • street_address - (Optional) The street address

  • postal_code - (Optional) The postal code

» Attributes Reference

In addition to the fields above, the following attributes are exported: