vault.pkiSecret.SecretBackendIntermediateCertRequest
Explore with Pulumi AI
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as vault from "@pulumi/vault";
const test = new vault.pkisecret.SecretBackendIntermediateCertRequest("test", {
backend: pki.path,
type: "internal",
commonName: "app.my.domain",
}, {
dependsOn: [pki],
});
import pulumi
import pulumi_vault as vault
test = vault.pki_secret.SecretBackendIntermediateCertRequest("test",
backend=pki["path"],
type="internal",
common_name="app.my.domain",
opts = pulumi.ResourceOptions(depends_on=[pki]))
package main
import (
"github.com/pulumi/pulumi-vault/sdk/v6/go/vault/pkiSecret"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := pkiSecret.NewSecretBackendIntermediateCertRequest(ctx, "test", &pkiSecret.SecretBackendIntermediateCertRequestArgs{
Backend: pulumi.Any(pki.Path),
Type: pulumi.String("internal"),
CommonName: pulumi.String("app.my.domain"),
}, pulumi.DependsOn([]pulumi.Resource{
pki,
}))
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Vault = Pulumi.Vault;
return await Deployment.RunAsync(() =>
{
var test = new Vault.PkiSecret.SecretBackendIntermediateCertRequest("test", new()
{
Backend = pki.Path,
Type = "internal",
CommonName = "app.my.domain",
}, new CustomResourceOptions
{
DependsOn =
{
pki,
},
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.vault.pkiSecret.SecretBackendIntermediateCertRequest;
import com.pulumi.vault.pkiSecret.SecretBackendIntermediateCertRequestArgs;
import com.pulumi.resources.CustomResourceOptions;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var test = new SecretBackendIntermediateCertRequest("test", SecretBackendIntermediateCertRequestArgs.builder()
.backend(pki.path())
.type("internal")
.commonName("app.my.domain")
.build(), CustomResourceOptions.builder()
.dependsOn(pki)
.build());
}
}
resources:
test:
type: vault:pkiSecret:SecretBackendIntermediateCertRequest
properties:
backend: ${pki.path}
type: internal
commonName: app.my.domain
options:
dependson:
- ${pki}
Create SecretBackendIntermediateCertRequest Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new SecretBackendIntermediateCertRequest(name: string, args: SecretBackendIntermediateCertRequestArgs, opts?: CustomResourceOptions);
@overload
def SecretBackendIntermediateCertRequest(resource_name: str,
args: SecretBackendIntermediateCertRequestArgs,
opts: Optional[ResourceOptions] = None)
@overload
def SecretBackendIntermediateCertRequest(resource_name: str,
opts: Optional[ResourceOptions] = None,
common_name: Optional[str] = None,
type: Optional[str] = None,
backend: Optional[str] = None,
locality: Optional[str] = None,
managed_key_name: Optional[str] = None,
exclude_cn_from_sans: Optional[bool] = None,
format: Optional[str] = None,
ip_sans: Optional[Sequence[str]] = None,
key_bits: Optional[int] = None,
key_name: Optional[str] = None,
key_ref: Optional[str] = None,
key_type: Optional[str] = None,
add_basic_constraints: Optional[bool] = None,
managed_key_id: Optional[str] = None,
country: Optional[str] = None,
namespace: Optional[str] = None,
organization: Optional[str] = None,
other_sans: Optional[Sequence[str]] = None,
ou: Optional[str] = None,
postal_code: Optional[str] = None,
private_key_format: Optional[str] = None,
province: Optional[str] = None,
street_address: Optional[str] = None,
alt_names: Optional[Sequence[str]] = None,
uri_sans: Optional[Sequence[str]] = None)
func NewSecretBackendIntermediateCertRequest(ctx *Context, name string, args SecretBackendIntermediateCertRequestArgs, opts ...ResourceOption) (*SecretBackendIntermediateCertRequest, error)
public SecretBackendIntermediateCertRequest(string name, SecretBackendIntermediateCertRequestArgs args, CustomResourceOptions? opts = null)
public SecretBackendIntermediateCertRequest(String name, SecretBackendIntermediateCertRequestArgs args)
public SecretBackendIntermediateCertRequest(String name, SecretBackendIntermediateCertRequestArgs args, CustomResourceOptions options)
type: vault:pkiSecret:SecretBackendIntermediateCertRequest
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args SecretBackendIntermediateCertRequestArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args SecretBackendIntermediateCertRequestArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args SecretBackendIntermediateCertRequestArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args SecretBackendIntermediateCertRequestArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args SecretBackendIntermediateCertRequestArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var secretBackendIntermediateCertRequestResource = new Vault.PkiSecret.SecretBackendIntermediateCertRequest("secretBackendIntermediateCertRequestResource", new()
{
CommonName = "string",
Type = "string",
Backend = "string",
Locality = "string",
ManagedKeyName = "string",
ExcludeCnFromSans = false,
Format = "string",
IpSans = new[]
{
"string",
},
KeyBits = 0,
KeyName = "string",
KeyRef = "string",
KeyType = "string",
AddBasicConstraints = false,
ManagedKeyId = "string",
Country = "string",
Namespace = "string",
Organization = "string",
OtherSans = new[]
{
"string",
},
Ou = "string",
PostalCode = "string",
PrivateKeyFormat = "string",
Province = "string",
StreetAddress = "string",
AltNames = new[]
{
"string",
},
UriSans = new[]
{
"string",
},
});
example, err := pkiSecret.NewSecretBackendIntermediateCertRequest(ctx, "secretBackendIntermediateCertRequestResource", &pkiSecret.SecretBackendIntermediateCertRequestArgs{
CommonName: pulumi.String("string"),
Type: pulumi.String("string"),
Backend: pulumi.String("string"),
Locality: pulumi.String("string"),
ManagedKeyName: pulumi.String("string"),
ExcludeCnFromSans: pulumi.Bool(false),
Format: pulumi.String("string"),
IpSans: pulumi.StringArray{
pulumi.String("string"),
},
KeyBits: pulumi.Int(0),
KeyName: pulumi.String("string"),
KeyRef: pulumi.String("string"),
KeyType: pulumi.String("string"),
AddBasicConstraints: pulumi.Bool(false),
ManagedKeyId: pulumi.String("string"),
Country: pulumi.String("string"),
Namespace: pulumi.String("string"),
Organization: pulumi.String("string"),
OtherSans: pulumi.StringArray{
pulumi.String("string"),
},
Ou: pulumi.String("string"),
PostalCode: pulumi.String("string"),
PrivateKeyFormat: pulumi.String("string"),
Province: pulumi.String("string"),
StreetAddress: pulumi.String("string"),
AltNames: pulumi.StringArray{
pulumi.String("string"),
},
UriSans: pulumi.StringArray{
pulumi.String("string"),
},
})
var secretBackendIntermediateCertRequestResource = new SecretBackendIntermediateCertRequest("secretBackendIntermediateCertRequestResource", SecretBackendIntermediateCertRequestArgs.builder()
.commonName("string")
.type("string")
.backend("string")
.locality("string")
.managedKeyName("string")
.excludeCnFromSans(false)
.format("string")
.ipSans("string")
.keyBits(0)
.keyName("string")
.keyRef("string")
.keyType("string")
.addBasicConstraints(false)
.managedKeyId("string")
.country("string")
.namespace("string")
.organization("string")
.otherSans("string")
.ou("string")
.postalCode("string")
.privateKeyFormat("string")
.province("string")
.streetAddress("string")
.altNames("string")
.uriSans("string")
.build());
secret_backend_intermediate_cert_request_resource = vault.pki_secret.SecretBackendIntermediateCertRequest("secretBackendIntermediateCertRequestResource",
common_name="string",
type="string",
backend="string",
locality="string",
managed_key_name="string",
exclude_cn_from_sans=False,
format="string",
ip_sans=["string"],
key_bits=0,
key_name="string",
key_ref="string",
key_type="string",
add_basic_constraints=False,
managed_key_id="string",
country="string",
namespace="string",
organization="string",
other_sans=["string"],
ou="string",
postal_code="string",
private_key_format="string",
province="string",
street_address="string",
alt_names=["string"],
uri_sans=["string"])
const secretBackendIntermediateCertRequestResource = new vault.pkisecret.SecretBackendIntermediateCertRequest("secretBackendIntermediateCertRequestResource", {
commonName: "string",
type: "string",
backend: "string",
locality: "string",
managedKeyName: "string",
excludeCnFromSans: false,
format: "string",
ipSans: ["string"],
keyBits: 0,
keyName: "string",
keyRef: "string",
keyType: "string",
addBasicConstraints: false,
managedKeyId: "string",
country: "string",
namespace: "string",
organization: "string",
otherSans: ["string"],
ou: "string",
postalCode: "string",
privateKeyFormat: "string",
province: "string",
streetAddress: "string",
altNames: ["string"],
uriSans: ["string"],
});
type: vault:pkiSecret:SecretBackendIntermediateCertRequest
properties:
addBasicConstraints: false
altNames:
- string
backend: string
commonName: string
country: string
excludeCnFromSans: false
format: string
ipSans:
- string
keyBits: 0
keyName: string
keyRef: string
keyType: string
locality: string
managedKeyId: string
managedKeyName: string
namespace: string
organization: string
otherSans:
- string
ou: string
postalCode: string
privateKeyFormat: string
province: string
streetAddress: string
type: string
uriSans:
- string
SecretBackendIntermediateCertRequest Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The SecretBackendIntermediateCertRequest resource accepts the following input properties:
- Backend string
- The PKI secret backend the resource belongs to.
- Common
Name string - CN of intermediate to create
- Type string
- Type of intermediate to create. Must be either "exported" or "internal" or "kms"
- Add
Basic boolConstraints - Adds a Basic Constraints extension with 'CA: true'. Only needed as a workaround in some compatibility scenarios with Active Directory Certificate Services
- Alt
Names List<string> - List of alternative names
- Country string
- The country
- Exclude
Cn boolFrom Sans - Flag to exclude CN from SANs
- Format string
- The format of data
- Ip
Sans List<string> - List of alternative IPs
- Key
Bits int - The number of bits to use
- Key
Name string - When a new key is created with this request, optionally specifies
the name for this. The global ref
default
may not be used as a name. - Key
Ref string - Specifies the key (either default, by name, or by identifier) to use
for generating this request. Only suitable for
type=existing
requests. - Key
Type string - The desired key type
- Locality string
- The locality
- Managed
Key stringId - The ID of the previously configured managed key. This field is
required if
type
iskms
and it conflicts withmanaged_key_name
- Managed
Key stringName - The name of the previously configured managed key. This field is
required if
type
iskms
and it conflicts withmanaged_key_id
- Namespace string
- The namespace to provision the resource in.
The value should not contain leading or trailing forward slashes.
The
namespace
is always relative to the provider's configured namespace. Available only for Vault Enterprise. - Organization string
- The organization
- Other
Sans List<string> - List of other SANs
- Ou string
- The organization unit
- Postal
Code string - The postal code
- Private
Key stringFormat - The private key format
- Province string
- The province
- Street
Address string - The street address
- Uri
Sans List<string> - List of alternative URIs
- Backend string
- The PKI secret backend the resource belongs to.
- Common
Name string - CN of intermediate to create
- Type string
- Type of intermediate to create. Must be either "exported" or "internal" or "kms"
- Add
Basic boolConstraints - Adds a Basic Constraints extension with 'CA: true'. Only needed as a workaround in some compatibility scenarios with Active Directory Certificate Services
- Alt
Names []string - List of alternative names
- Country string
- The country
- Exclude
Cn boolFrom Sans - Flag to exclude CN from SANs
- Format string
- The format of data
- Ip
Sans []string - List of alternative IPs
- Key
Bits int - The number of bits to use
- Key
Name string - When a new key is created with this request, optionally specifies
the name for this. The global ref
default
may not be used as a name. - Key
Ref string - Specifies the key (either default, by name, or by identifier) to use
for generating this request. Only suitable for
type=existing
requests. - Key
Type string - The desired key type
- Locality string
- The locality
- Managed
Key stringId - The ID of the previously configured managed key. This field is
required if
type
iskms
and it conflicts withmanaged_key_name
- Managed
Key stringName - The name of the previously configured managed key. This field is
required if
type
iskms
and it conflicts withmanaged_key_id
- Namespace string
- The namespace to provision the resource in.
The value should not contain leading or trailing forward slashes.
The
namespace
is always relative to the provider's configured namespace. Available only for Vault Enterprise. - Organization string
- The organization
- Other
Sans []string - List of other SANs
- Ou string
- The organization unit
- Postal
Code string - The postal code
- Private
Key stringFormat - The private key format
- Province string
- The province
- Street
Address string - The street address
- Uri
Sans []string - List of alternative URIs
- backend String
- The PKI secret backend the resource belongs to.
- common
Name String - CN of intermediate to create
- type String
- Type of intermediate to create. Must be either "exported" or "internal" or "kms"
- add
Basic BooleanConstraints - Adds a Basic Constraints extension with 'CA: true'. Only needed as a workaround in some compatibility scenarios with Active Directory Certificate Services
- alt
Names List<String> - List of alternative names
- country String
- The country
- exclude
Cn BooleanFrom Sans - Flag to exclude CN from SANs
- format String
- The format of data
- ip
Sans List<String> - List of alternative IPs
- key
Bits Integer - The number of bits to use
- key
Name String - When a new key is created with this request, optionally specifies
the name for this. The global ref
default
may not be used as a name. - key
Ref String - Specifies the key (either default, by name, or by identifier) to use
for generating this request. Only suitable for
type=existing
requests. - key
Type String - The desired key type
- locality String
- The locality
- managed
Key StringId - The ID of the previously configured managed key. This field is
required if
type
iskms
and it conflicts withmanaged_key_name
- managed
Key StringName - The name of the previously configured managed key. This field is
required if
type
iskms
and it conflicts withmanaged_key_id
- namespace String
- The namespace to provision the resource in.
The value should not contain leading or trailing forward slashes.
The
namespace
is always relative to the provider's configured namespace. Available only for Vault Enterprise. - organization String
- The organization
- other
Sans List<String> - List of other SANs
- ou String
- The organization unit
- postal
Code String - The postal code
- private
Key StringFormat - The private key format
- province String
- The province
- street
Address String - The street address
- uri
Sans List<String> - List of alternative URIs
- backend string
- The PKI secret backend the resource belongs to.
- common
Name string - CN of intermediate to create
- type string
- Type of intermediate to create. Must be either "exported" or "internal" or "kms"
- add
Basic booleanConstraints - Adds a Basic Constraints extension with 'CA: true'. Only needed as a workaround in some compatibility scenarios with Active Directory Certificate Services
- alt
Names string[] - List of alternative names
- country string
- The country
- exclude
Cn booleanFrom Sans - Flag to exclude CN from SANs
- format string
- The format of data
- ip
Sans string[] - List of alternative IPs
- key
Bits number - The number of bits to use
- key
Name string - When a new key is created with this request, optionally specifies
the name for this. The global ref
default
may not be used as a name. - key
Ref string - Specifies the key (either default, by name, or by identifier) to use
for generating this request. Only suitable for
type=existing
requests. - key
Type string - The desired key type
- locality string
- The locality
- managed
Key stringId - The ID of the previously configured managed key. This field is
required if
type
iskms
and it conflicts withmanaged_key_name
- managed
Key stringName - The name of the previously configured managed key. This field is
required if
type
iskms
and it conflicts withmanaged_key_id
- namespace string
- The namespace to provision the resource in.
The value should not contain leading or trailing forward slashes.
The
namespace
is always relative to the provider's configured namespace. Available only for Vault Enterprise. - organization string
- The organization
- other
Sans string[] - List of other SANs
- ou string
- The organization unit
- postal
Code string - The postal code
- private
Key stringFormat - The private key format
- province string
- The province
- street
Address string - The street address
- uri
Sans string[] - List of alternative URIs
- backend str
- The PKI secret backend the resource belongs to.
- common_
name str - CN of intermediate to create
- type str
- Type of intermediate to create. Must be either "exported" or "internal" or "kms"
- add_
basic_ boolconstraints - Adds a Basic Constraints extension with 'CA: true'. Only needed as a workaround in some compatibility scenarios with Active Directory Certificate Services
- alt_
names Sequence[str] - List of alternative names
- country str
- The country
- exclude_
cn_ boolfrom_ sans - Flag to exclude CN from SANs
- format str
- The format of data
- ip_
sans Sequence[str] - List of alternative IPs
- key_
bits int - The number of bits to use
- key_
name str - When a new key is created with this request, optionally specifies
the name for this. The global ref
default
may not be used as a name. - key_
ref str - Specifies the key (either default, by name, or by identifier) to use
for generating this request. Only suitable for
type=existing
requests. - key_
type str - The desired key type
- locality str
- The locality
- managed_
key_ strid - The ID of the previously configured managed key. This field is
required if
type
iskms
and it conflicts withmanaged_key_name
- managed_
key_ strname - The name of the previously configured managed key. This field is
required if
type
iskms
and it conflicts withmanaged_key_id
- namespace str
- The namespace to provision the resource in.
The value should not contain leading or trailing forward slashes.
The
namespace
is always relative to the provider's configured namespace. Available only for Vault Enterprise. - organization str
- The organization
- other_
sans Sequence[str] - List of other SANs
- ou str
- The organization unit
- postal_
code str - The postal code
- private_
key_ strformat - The private key format
- province str
- The province
- street_
address str - The street address
- uri_
sans Sequence[str] - List of alternative URIs
- backend String
- The PKI secret backend the resource belongs to.
- common
Name String - CN of intermediate to create
- type String
- Type of intermediate to create. Must be either "exported" or "internal" or "kms"
- add
Basic BooleanConstraints - Adds a Basic Constraints extension with 'CA: true'. Only needed as a workaround in some compatibility scenarios with Active Directory Certificate Services
- alt
Names List<String> - List of alternative names
- country String
- The country
- exclude
Cn BooleanFrom Sans - Flag to exclude CN from SANs
- format String
- The format of data
- ip
Sans List<String> - List of alternative IPs
- key
Bits Number - The number of bits to use
- key
Name String - When a new key is created with this request, optionally specifies
the name for this. The global ref
default
may not be used as a name. - key
Ref String - Specifies the key (either default, by name, or by identifier) to use
for generating this request. Only suitable for
type=existing
requests. - key
Type String - The desired key type
- locality String
- The locality
- managed
Key StringId - The ID of the previously configured managed key. This field is
required if
type
iskms
and it conflicts withmanaged_key_name
- managed
Key StringName - The name of the previously configured managed key. This field is
required if
type
iskms
and it conflicts withmanaged_key_id
- namespace String
- The namespace to provision the resource in.
The value should not contain leading or trailing forward slashes.
The
namespace
is always relative to the provider's configured namespace. Available only for Vault Enterprise. - organization String
- The organization
- other
Sans List<String> - List of other SANs
- ou String
- The organization unit
- postal
Code String - The postal code
- private
Key StringFormat - The private key format
- province String
- The province
- street
Address String - The street address
- uri
Sans List<String> - List of alternative URIs
Outputs
All input properties are implicitly available as output properties. Additionally, the SecretBackendIntermediateCertRequest resource produces the following output properties:
- Csr string
- The CSR
- Id string
- The provider-assigned unique ID for this managed resource.
- Key
Id string - The ID of the generated key.
- Private
Key string - The private key
- Private
Key stringType - The private key type
- Csr string
- The CSR
- Id string
- The provider-assigned unique ID for this managed resource.
- Key
Id string - The ID of the generated key.
- Private
Key string - The private key
- Private
Key stringType - The private key type
- csr String
- The CSR
- id String
- The provider-assigned unique ID for this managed resource.
- key
Id String - The ID of the generated key.
- private
Key String - The private key
- private
Key StringType - The private key type
- csr string
- The CSR
- id string
- The provider-assigned unique ID for this managed resource.
- key
Id string - The ID of the generated key.
- private
Key string - The private key
- private
Key stringType - The private key type
- csr str
- The CSR
- id str
- The provider-assigned unique ID for this managed resource.
- key_
id str - The ID of the generated key.
- private_
key str - The private key
- private_
key_ strtype - The private key type
- csr String
- The CSR
- id String
- The provider-assigned unique ID for this managed resource.
- key
Id String - The ID of the generated key.
- private
Key String - The private key
- private
Key StringType - The private key type
Look up Existing SecretBackendIntermediateCertRequest Resource
Get an existing SecretBackendIntermediateCertRequest resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: SecretBackendIntermediateCertRequestState, opts?: CustomResourceOptions): SecretBackendIntermediateCertRequest
@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
add_basic_constraints: Optional[bool] = None,
alt_names: Optional[Sequence[str]] = None,
backend: Optional[str] = None,
common_name: Optional[str] = None,
country: Optional[str] = None,
csr: Optional[str] = None,
exclude_cn_from_sans: Optional[bool] = None,
format: Optional[str] = None,
ip_sans: Optional[Sequence[str]] = None,
key_bits: Optional[int] = None,
key_id: Optional[str] = None,
key_name: Optional[str] = None,
key_ref: Optional[str] = None,
key_type: Optional[str] = None,
locality: Optional[str] = None,
managed_key_id: Optional[str] = None,
managed_key_name: Optional[str] = None,
namespace: Optional[str] = None,
organization: Optional[str] = None,
other_sans: Optional[Sequence[str]] = None,
ou: Optional[str] = None,
postal_code: Optional[str] = None,
private_key: Optional[str] = None,
private_key_format: Optional[str] = None,
private_key_type: Optional[str] = None,
province: Optional[str] = None,
street_address: Optional[str] = None,
type: Optional[str] = None,
uri_sans: Optional[Sequence[str]] = None) -> SecretBackendIntermediateCertRequest
func GetSecretBackendIntermediateCertRequest(ctx *Context, name string, id IDInput, state *SecretBackendIntermediateCertRequestState, opts ...ResourceOption) (*SecretBackendIntermediateCertRequest, error)
public static SecretBackendIntermediateCertRequest Get(string name, Input<string> id, SecretBackendIntermediateCertRequestState? state, CustomResourceOptions? opts = null)
public static SecretBackendIntermediateCertRequest get(String name, Output<String> id, SecretBackendIntermediateCertRequestState state, CustomResourceOptions options)
Resource lookup is not supported in YAML
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Add
Basic boolConstraints - Adds a Basic Constraints extension with 'CA: true'. Only needed as a workaround in some compatibility scenarios with Active Directory Certificate Services
- Alt
Names List<string> - List of alternative names
- Backend string
- The PKI secret backend the resource belongs to.
- Common
Name string - CN of intermediate to create
- Country string
- The country
- Csr string
- The CSR
- Exclude
Cn boolFrom Sans - Flag to exclude CN from SANs
- Format string
- The format of data
- Ip
Sans List<string> - List of alternative IPs
- Key
Bits int - The number of bits to use
- Key
Id string - The ID of the generated key.
- Key
Name string - When a new key is created with this request, optionally specifies
the name for this. The global ref
default
may not be used as a name. - Key
Ref string - Specifies the key (either default, by name, or by identifier) to use
for generating this request. Only suitable for
type=existing
requests. - Key
Type string - The desired key type
- Locality string
- The locality
- Managed
Key stringId - The ID of the previously configured managed key. This field is
required if
type
iskms
and it conflicts withmanaged_key_name
- Managed
Key stringName - The name of the previously configured managed key. This field is
required if
type
iskms
and it conflicts withmanaged_key_id
- Namespace string
- The namespace to provision the resource in.
The value should not contain leading or trailing forward slashes.
The
namespace
is always relative to the provider's configured namespace. Available only for Vault Enterprise. - Organization string
- The organization
- Other
Sans List<string> - List of other SANs
- Ou string
- The organization unit
- Postal
Code string - The postal code
- Private
Key string - The private key
- Private
Key stringFormat - The private key format
- Private
Key stringType - The private key type
- Province string
- The province
- Street
Address string - The street address
- Type string
- Type of intermediate to create. Must be either "exported" or "internal" or "kms"
- Uri
Sans List<string> - List of alternative URIs
- Add
Basic boolConstraints - Adds a Basic Constraints extension with 'CA: true'. Only needed as a workaround in some compatibility scenarios with Active Directory Certificate Services
- Alt
Names []string - List of alternative names
- Backend string
- The PKI secret backend the resource belongs to.
- Common
Name string - CN of intermediate to create
- Country string
- The country
- Csr string
- The CSR
- Exclude
Cn boolFrom Sans - Flag to exclude CN from SANs
- Format string
- The format of data
- Ip
Sans []string - List of alternative IPs
- Key
Bits int - The number of bits to use
- Key
Id string - The ID of the generated key.
- Key
Name string - When a new key is created with this request, optionally specifies
the name for this. The global ref
default
may not be used as a name. - Key
Ref string - Specifies the key (either default, by name, or by identifier) to use
for generating this request. Only suitable for
type=existing
requests. - Key
Type string - The desired key type
- Locality string
- The locality
- Managed
Key stringId - The ID of the previously configured managed key. This field is
required if
type
iskms
and it conflicts withmanaged_key_name
- Managed
Key stringName - The name of the previously configured managed key. This field is
required if
type
iskms
and it conflicts withmanaged_key_id
- Namespace string
- The namespace to provision the resource in.
The value should not contain leading or trailing forward slashes.
The
namespace
is always relative to the provider's configured namespace. Available only for Vault Enterprise. - Organization string
- The organization
- Other
Sans []string - List of other SANs
- Ou string
- The organization unit
- Postal
Code string - The postal code
- Private
Key string - The private key
- Private
Key stringFormat - The private key format
- Private
Key stringType - The private key type
- Province string
- The province
- Street
Address string - The street address
- Type string
- Type of intermediate to create. Must be either "exported" or "internal" or "kms"
- Uri
Sans []string - List of alternative URIs
- add
Basic BooleanConstraints - Adds a Basic Constraints extension with 'CA: true'. Only needed as a workaround in some compatibility scenarios with Active Directory Certificate Services
- alt
Names List<String> - List of alternative names
- backend String
- The PKI secret backend the resource belongs to.
- common
Name String - CN of intermediate to create
- country String
- The country
- csr String
- The CSR
- exclude
Cn BooleanFrom Sans - Flag to exclude CN from SANs
- format String
- The format of data
- ip
Sans List<String> - List of alternative IPs
- key
Bits Integer - The number of bits to use
- key
Id String - The ID of the generated key.
- key
Name String - When a new key is created with this request, optionally specifies
the name for this. The global ref
default
may not be used as a name. - key
Ref String - Specifies the key (either default, by name, or by identifier) to use
for generating this request. Only suitable for
type=existing
requests. - key
Type String - The desired key type
- locality String
- The locality
- managed
Key StringId - The ID of the previously configured managed key. This field is
required if
type
iskms
and it conflicts withmanaged_key_name
- managed
Key StringName - The name of the previously configured managed key. This field is
required if
type
iskms
and it conflicts withmanaged_key_id
- namespace String
- The namespace to provision the resource in.
The value should not contain leading or trailing forward slashes.
The
namespace
is always relative to the provider's configured namespace. Available only for Vault Enterprise. - organization String
- The organization
- other
Sans List<String> - List of other SANs
- ou String
- The organization unit
- postal
Code String - The postal code
- private
Key String - The private key
- private
Key StringFormat - The private key format
- private
Key StringType - The private key type
- province String
- The province
- street
Address String - The street address
- type String
- Type of intermediate to create. Must be either "exported" or "internal" or "kms"
- uri
Sans List<String> - List of alternative URIs
- add
Basic booleanConstraints - Adds a Basic Constraints extension with 'CA: true'. Only needed as a workaround in some compatibility scenarios with Active Directory Certificate Services
- alt
Names string[] - List of alternative names
- backend string
- The PKI secret backend the resource belongs to.
- common
Name string - CN of intermediate to create
- country string
- The country
- csr string
- The CSR
- exclude
Cn booleanFrom Sans - Flag to exclude CN from SANs
- format string
- The format of data
- ip
Sans string[] - List of alternative IPs
- key
Bits number - The number of bits to use
- key
Id string - The ID of the generated key.
- key
Name string - When a new key is created with this request, optionally specifies
the name for this. The global ref
default
may not be used as a name. - key
Ref string - Specifies the key (either default, by name, or by identifier) to use
for generating this request. Only suitable for
type=existing
requests. - key
Type string - The desired key type
- locality string
- The locality
- managed
Key stringId - The ID of the previously configured managed key. This field is
required if
type
iskms
and it conflicts withmanaged_key_name
- managed
Key stringName - The name of the previously configured managed key. This field is
required if
type
iskms
and it conflicts withmanaged_key_id
- namespace string
- The namespace to provision the resource in.
The value should not contain leading or trailing forward slashes.
The
namespace
is always relative to the provider's configured namespace. Available only for Vault Enterprise. - organization string
- The organization
- other
Sans string[] - List of other SANs
- ou string
- The organization unit
- postal
Code string - The postal code
- private
Key string - The private key
- private
Key stringFormat - The private key format
- private
Key stringType - The private key type
- province string
- The province
- street
Address string - The street address
- type string
- Type of intermediate to create. Must be either "exported" or "internal" or "kms"
- uri
Sans string[] - List of alternative URIs
- add_
basic_ boolconstraints - Adds a Basic Constraints extension with 'CA: true'. Only needed as a workaround in some compatibility scenarios with Active Directory Certificate Services
- alt_
names Sequence[str] - List of alternative names
- backend str
- The PKI secret backend the resource belongs to.
- common_
name str - CN of intermediate to create
- country str
- The country
- csr str
- The CSR
- exclude_
cn_ boolfrom_ sans - Flag to exclude CN from SANs
- format str
- The format of data
- ip_
sans Sequence[str] - List of alternative IPs
- key_
bits int - The number of bits to use
- key_
id str - The ID of the generated key.
- key_
name str - When a new key is created with this request, optionally specifies
the name for this. The global ref
default
may not be used as a name. - key_
ref str - Specifies the key (either default, by name, or by identifier) to use
for generating this request. Only suitable for
type=existing
requests. - key_
type str - The desired key type
- locality str
- The locality
- managed_
key_ strid - The ID of the previously configured managed key. This field is
required if
type
iskms
and it conflicts withmanaged_key_name
- managed_
key_ strname - The name of the previously configured managed key. This field is
required if
type
iskms
and it conflicts withmanaged_key_id
- namespace str
- The namespace to provision the resource in.
The value should not contain leading or trailing forward slashes.
The
namespace
is always relative to the provider's configured namespace. Available only for Vault Enterprise. - organization str
- The organization
- other_
sans Sequence[str] - List of other SANs
- ou str
- The organization unit
- postal_
code str - The postal code
- private_
key str - The private key
- private_
key_ strformat - The private key format
- private_
key_ strtype - The private key type
- province str
- The province
- street_
address str - The street address
- type str
- Type of intermediate to create. Must be either "exported" or "internal" or "kms"
- uri_
sans Sequence[str] - List of alternative URIs
- add
Basic BooleanConstraints - Adds a Basic Constraints extension with 'CA: true'. Only needed as a workaround in some compatibility scenarios with Active Directory Certificate Services
- alt
Names List<String> - List of alternative names
- backend String
- The PKI secret backend the resource belongs to.
- common
Name String - CN of intermediate to create
- country String
- The country
- csr String
- The CSR
- exclude
Cn BooleanFrom Sans - Flag to exclude CN from SANs
- format String
- The format of data
- ip
Sans List<String> - List of alternative IPs
- key
Bits Number - The number of bits to use
- key
Id String - The ID of the generated key.
- key
Name String - When a new key is created with this request, optionally specifies
the name for this. The global ref
default
may not be used as a name. - key
Ref String - Specifies the key (either default, by name, or by identifier) to use
for generating this request. Only suitable for
type=existing
requests. - key
Type String - The desired key type
- locality String
- The locality
- managed
Key StringId - The ID of the previously configured managed key. This field is
required if
type
iskms
and it conflicts withmanaged_key_name
- managed
Key StringName - The name of the previously configured managed key. This field is
required if
type
iskms
and it conflicts withmanaged_key_id
- namespace String
- The namespace to provision the resource in.
The value should not contain leading or trailing forward slashes.
The
namespace
is always relative to the provider's configured namespace. Available only for Vault Enterprise. - organization String
- The organization
- other
Sans List<String> - List of other SANs
- ou String
- The organization unit
- postal
Code String - The postal code
- private
Key String - The private key
- private
Key StringFormat - The private key format
- private
Key StringType - The private key type
- province String
- The province
- street
Address String - The street address
- type String
- Type of intermediate to create. Must be either "exported" or "internal" or "kms"
- uri
Sans List<String> - List of alternative URIs
Package Details
- Repository
- Vault pulumi/pulumi-vault
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
vault
Terraform Provider.