vault_pki_secret_backend_config_urls

Allows setting the issuing certificate endpoints, CRL distribution points, and OCSP server endpoints that will be encoded into issued certificates.

Example Usage

resource "vault_mount" "root" {
  path                      = "pki-root"
  type                      = "pki"
  description               = "root PKI"
  default_lease_ttl_seconds = 8640000
  max_lease_ttl_seconds     = 8640000
}

resource "vault_pki_secret_backend_config_urls" "example" {
  backend = vault_mount.root.path
  issuing_certificates = [
    "http://127.0.0.1:8200/v1/pki/ca",
  ]
}

Argument Reference

The following arguments are supported:

Attributes Reference

No additional attributes are exported by this resource.

Import

The PKI config URLs can be imported using the resource's id. In the case of the example above the id would be pki-root/config/urls, where the pki-root component is the resource's backend, e.g.

$ terraform import vault_pki_secret_backend_config_urls.example pki-root/config/urls