Skip to content

Latest commit

 

History

History
62 lines (56 loc) · 3.49 KB

CreateSSHCertIssuer.md

File metadata and controls

62 lines (56 loc) · 3.49 KB
Raw

Akeyless::CreateSSHCertIssuer

Properties

Name Type Description Notes
provider_type String [optional]
allowed_users String Users allowed to fetch the certificate, e.g root,ubuntu
delete_protection String Protection from accidental deletion of this object [true/false] [optional]
description String Description of the object [optional]
extensions Hash<String, String> Signed certificates with extensions, e.g permit-port-forwarding=\&quot;\&quot; [optional]
host_provider String Host provider type [explicit/target], Default Host provider is explicit, Relevant only for Secure Remote Access of ssh cert issuer, ldap rotated secret and ldap dynamic secret [optional]
json Boolean Set output format to JSON [optional][default to false]
metadata String Deprecated - use description [optional]
name String SSH certificate issuer name
principals String Signed certificates with principal, e.g example_role1,example_role2 [optional]
secure_access_bastion_api String Bastion's SSH control API endpoint. E.g. https://my.bastion:9900 [optional]
secure_access_bastion_ssh String Bastion's SSH server. E.g. my.bastion:22 [optional]
secure_access_enable String Enable/Disable secure remote access [true/false] [optional]
secure_access_enforce_hosts_restriction Boolean Enable this flag to enforce connections only to the hosts listed in --secure-access-host [optional]
secure_access_host Array<String> Target servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts - Relevant only for Dynamic Secrets/producers) [optional]
secure_access_ssh_creds_user String SSH username to connect to target server, must be in 'Allowed Users' list [optional]
secure_access_use_internal_bastion Boolean Use internal SSH Bastion [optional]
signer_key_name String A key to sign the certificate with
tag Array<String> List of the tags attached to this key [optional]
target Array<String> A list of linked targets to be associated, Relevant only for Secure Remote Access for ssh cert issuer, ldap rotated secret and ldap dynamic secret, To specify multiple targets use argument multiple times [optional]
token String Authentication token (see `/auth` and `/configure`) [optional]
ttl Integer The requested Time To Live for the certificate, in seconds
uid_token String The universal identity token, Required only for universal_identity authentication [optional]

Example

require 'akeyless'

instance = Akeyless::CreateSSHCertIssuer.new(
  provider_type: null,
  allowed_users: null,
  delete_protection: null,
  description: null,
  extensions: null,
  host_provider: null,
  json: null,
  metadata: null,
  name: null,
  principals: null,
  secure_access_bastion_api: null,
  secure_access_bastion_ssh: null,
  secure_access_enable: null,
  secure_access_enforce_hosts_restriction: null,
  secure_access_host: null,
  secure_access_ssh_creds_user: null,
  secure_access_use_internal_bastion: null,
  signer_key_name: null,
  tag: null,
  target: null,
  token: null,
  ttl: null,
  uid_token: null
)