Provides a resource to manage CA information in an SSH secret backend SSH secret backend within Vault.
resource "vault_mount" "example" {
type = "ssh"
}
resource "vault_ssh_secret_backend_ca" "foo" {
backend = vault_mount.example.path
}
The following arguments are supported:
namespace
- (Optional) The namespace to provision the resource in.
The value should not contain leading or trailing forward slashes.
The namespace
is always relative to the provider's configured namespace.
Available only for Vault Enterprise.
backend
- (Optional) The path where the SSH secret backend is mounted. Defaults to 'ssh'
generate_signing_key
- (Optional) Whether Vault should generate the signing key pair internally. Defaults to true
public_key
- (Optional) The public key part the SSH CA key pair; required if generate_signing_key is false.
private_key
- (Optional) The private key part the SSH CA key pair; required if generate_signing_key is false.
No additional attributes are exposed by this resource.
SSH secret backend CAs can be imported using the path
, e.g.
$ terraform import vault_ssh_secret_backend_ca.foo ssh