Skip to content

Latest commit

 

History

History
31 lines (27 loc) · 2.73 KB

CreateSSHCertIssuer.md

File metadata and controls

31 lines (27 loc) · 2.73 KB

akeyless.CreateSSHCertIssuer

Properties

Name Type Description Notes
providerType String [optional]
allowedUsers String Users allowed to fetch the certificate, e.g root,ubuntu
deleteProtection String Protection from accidental deletion of this object [true/false] [optional]
description String Description of the object [optional]
extensions {String: String} Signed certificates with extensions, e.g permit-port-forwarding=\"\" [optional]
hostProvider String Host provider type [explicit/target], Default Host provider is explicit, Relevant only for Secure Remote Access of ssh cert issuer, ldap rotated secret and ldap dynamic secret [optional]
json Boolean Set output format to JSON [optional] [default to false]
metadata String Deprecated - use description [optional]
name String SSH certificate issuer name
principals String Signed certificates with principal, e.g example_role1,example_role2 [optional]
secureAccessBastionApi String Bastion's SSH control API endpoint. E.g. https://my.bastion:9900 [optional]
secureAccessBastionSsh String Bastion's SSH server. E.g. my.bastion:22 [optional]
secureAccessEnable String Enable/Disable secure remote access [true/false] [optional]
secureAccessEnforceHostsRestriction Boolean Enable this flag to enforce connections only to the hosts listed in --secure-access-host [optional]
secureAccessHost [String] Target servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts - Relevant only for Dynamic Secrets/producers) [optional]
secureAccessSshCredsUser String SSH username to connect to target server, must be in 'Allowed Users' list [optional]
secureAccessUseInternalBastion Boolean Use internal SSH Bastion [optional]
signerKeyName String A key to sign the certificate with
tag [String] List of the tags attached to this key [optional]
target [String] A list of linked targets to be associated, Relevant only for Secure Remote Access for ssh cert issuer, ldap rotated secret and ldap dynamic secret, To specify multiple targets use argument multiple times [optional]
token String Authentication token (see `/auth` and `/configure`) [optional]
ttl Number The requested Time To Live for the certificate, in seconds
uidToken String The universal identity token, Required only for universal_identity authentication [optional]