Vault

Channel Revision Published Runs on
latest/edge 222 20 Jan 2024
Ubuntu 23.10
1.8/stable 209 05 Jan 2024
Ubuntu 22.04
1.8/edge 164 09 Aug 2023
Ubuntu 23.04
1.15/beta 276 18 Apr 2024
Ubuntu 22.04
1.15/edge 290 09 May 2024
Ubuntu 22.04
1.7/stable 210 10 Jan 2024
Ubuntu 22.04 Ubuntu 20.04
1.6/stable 289 05 May 2024
Ubuntu 20.04 Ubuntu 18.04
1.5/stable 268 11 Apr 2024
Ubuntu 20.04 Ubuntu 18.04
juju deploy vault --channel 1.15/beta
Show information

Learn to deploy on juju >

Platform:

Ubuntu
22.04

Relevant links

Discuss this charm

Share your thoughts on this charm with the community on discourse.

Join the discussion

Use Vault as an intermediate CA

In this how-to guide, we will configure Vault to act as an intermediate Certificate Authority (CA) using Vault’s PKI secrets engine. Here self-signed-certificates will be the parent CA and tls-certificates-requirer will be the charm requesting a certificate to Vault.

image

  1. Configure Vault’s common name
juju config vault common_name=mydomain.com
  1. Deploy the parent CA
juju deploy self-signed-certificates
  1. Integrate Vault with its parent CA
juju integrate vault:tls-certificates-pki self-signed-certificates
  1. Deploy tls-certificates-requirer
juju deploy tls-certificates-requirer --config common_name=demo.mydomain.com
  1. Integrate TLS Certificates Requirer with Vault
juju integrate tls-certificates-requirer vault:vault-pki
  1. Retrieve the certificate
juju run tls-certificates-requirer/leader get-certificate

Help improve this document in the forum (guidelines). Last updated a month ago.