vault_kmip_secret_role

Manages KMIP Secret roles in a Vault server. This feature requires Vault Enterprise. See the Vault documentation for more information.

Example Usage

resource "vault_kmip_secret_backend" "default" {
  path        = "kmip"
  description = "Vault KMIP backend"
}

resource "vault_kmip_secret_scope" "dev" {
  path  = vault_kmip_secret_backend.default.path
  scope = "dev"
  force = true
}

resource "vault_kmip_secret_role" "admin" {
  path                     = vault_kmip_secret_scope.dev.path
  scope                    = vault_kmip_secret_scope.dev.scope
  role                     = "admin"
  tls_client_key_type      = "ec"
  tls_client_key_bits      = 256
  operation_activate       = true
  operation_get            = true
  operation_get_attributes = true
  operation_create         = true
  operation_destroy        = true
}

Argument Reference

The following arguments are supported:

Attributes Reference

No additional attributes are exported by this resource.

Import

KMIP Secret role can be imported using the path, e.g.

$ terraform import vault_kmip_secret_role.admin kmip