Vault
- By OpenStack Charmers
- Security
Channel | Revision | Published | Runs on |
---|---|---|---|
latest/edge | 177 | 14 Aug 2023 | |
1.8/stable | 183 | 16 Sep 2023 | |
1.8/edge | 164 | 09 Aug 2023 | |
1.7/stable | 178 | 14 Aug 2023 | |
1.6/stable | 182 | 14 Sep 2023 | |
1.5/stable | 181 | 14 Sep 2023 |
juju deploy vault --channel 1.8/stable
You will need Juju 2.9 to be able to run this command. Learn how to upgrade to Juju 2.9.
Deploy universal operators easily with Juju, the Universal Operator Lifecycle Manager.
Platform:
-
authorize-charm
Authorize the vault charm to interact with vault
-
disable-pki
Disable the PKI secrets backend. This is needed if you wish to switch the CA type after being set up via either upload-signed-csr or generate-root-ca.
-
generate-certificate
Generate a certificate agains the Vault PKI
-
generate-root-ca
Generate a self-signed root CA
-
get-csr
Get intermediate CA csr
-
get-root-ca
Get the root CA certificate
-
pause
Pause the vault unit. This stops the vault service.
-
raft-bootstrap-node
If and only if quorum is permanently lost (ie. impossible to recover enough nodes to reach quorum), then use this action on a single unit to re-bootstrap the raft cluster from this node. Remove all other units before running this. This runs the procedure documented at https://support.hashicorp.com/hc/en-us/articles/360050756393
-
raft-state
Get the raft cluster state.
-
refresh-secrets
Refresh secret_id's and re-issue retrieval tokens for secrets endpoints
-
reissue-certificates
Reissue certificates to all clients
-
reload
Reloads the vault unit. This allows for limited configuration options to be re-read. Vault will not become sealed.
-
restart
Restarts the vault unit. Vault will become sealed.
-
resume
Resume the vault unit. This starts the vault service. Vault will become sealed.
-
upload-signed-csr
Upload a signed csr to vault