vault_pki_secret_backend_issuer

Manages the lifecycle of an existing issuer on a PKI Secret Backend. This resource does not create issuers. It instead tracks and performs updates made to an existing issuer that was created by one of the PKI generate endpoints. For more information, see the Vault documentation

Example Usage

resource "vault_mount" "pki" {
  path                      = "pki"
  type                      = "pki"
  default_lease_ttl_seconds = 3600
  max_lease_ttl_seconds     = 86400
}

resource "vault_pki_secret_backend_root_cert" "root" {
  backend     = vault_mount.pki.path
  type        = "internal"
  common_name = "test"
  ttl         = "86400"
}

resource "vault_pki_secret_backend_issuer" "example" {
  backend     = vault_pki_secret_backend_root_cert.root.backend
  issuer_ref  = vault_pki_secret_backend_root_cert.root.issuer_id
  issuer_name = "example-issuer"
}

Argument Reference

The following arguments are supported:

Attributes Reference

The following attributes are exported:

Import

PKI secret backend issuer can be imported using the id, e.g.

$ terraform import vault_pki_secret_backend_issuer.example pki/issuer/bf9b0d48-d0dd-652c-30be-77d04fc7e94d