vault_aws_auth_backend_cert

Manages a certificate to be used with an AWS Auth Backend in Vault.

This resource sets the AWS public key and the type of document that can be verified against the key that Vault can then use to verify the instance identity documents making auth requests.

For more information, see the Vault docs.

Example Usage

resource "vault_auth_backend" "aws" {
  type = "aws"
}

resource "vault_aws_auth_backend_cert" "cert" {
  backend         = vault_auth_backend.aws.path}"
  cert_name       = "my-cert"
  aws_public_cert = file("${path.module}/aws_public_key.crt)"
  type            = "pkcs7"
}

Argument Reference

The following arguments are supported:

Attributes Reference

No additional attributes are exported by this resource.

Import

AWS auth backend certificates can be imported using auth/, the backend path, /config/certificate/, and the cert_name e.g.

$ terraform import vault_aws_auth_backend_cert.example auth/aws/config/certificate/my-cert