Vault
- By Vault charmers
- Security
Channel | Revision | Published | Runs on |
---|---|---|---|
latest/edge | 222 | 20 Jan 2024 | |
1.8/stable | 209 | 05 Jan 2024 | |
1.8/edge | 164 | 09 Aug 2023 | |
1.15/beta | 276 | 18 Apr 2024 | |
1.15/edge | 290 | 09 May 2024 | |
1.7/stable | 210 | 10 Jan 2024 | |
1.6/stable | 289 | 05 May 2024 | |
1.5/stable | 268 | 11 Apr 2024 |
juju deploy vault --channel 1.15/beta
Deploy universal operators easily with Juju, the Universal Operator Lifecycle Manager.
Platform:
22.04
Use Vault as an intermediate CA
In this how-to guide, we will configure Vault to act as an intermediate Certificate Authority (CA) using Vault’s PKI secrets engine. Here self-signed-certificates will be the parent CA and tls-certificates-requirer will be the charm requesting a certificate to Vault.
- Configure Vault’s common name
juju config vault common_name=mydomain.com
- Deploy the parent CA
juju deploy self-signed-certificates
- Integrate Vault with its parent CA
juju integrate vault:tls-certificates-pki self-signed-certificates
- Deploy
tls-certificates-requirer
juju deploy tls-certificates-requirer --config common_name=demo.mydomain.com
- Integrate TLS Certificates Requirer with Vault
juju integrate tls-certificates-requirer vault:vault-pki
- Retrieve the certificate
juju run tls-certificates-requirer/leader get-certificate