provider_type |
String |
|
[optional] |
add_tag |
Array<String> |
List of the new tags that will be attached to this item |
[optional] |
api_id |
String |
API ID to rotate |
[optional] |
api_key |
String |
API key to rotate |
[optional] |
auto_rotate |
String |
Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation [true/false] |
[optional] |
aws_region |
String |
Aws Region (relevant only for aws) |
[optional][default to 'us-east-2'] |
custom_payload |
String |
Secret payload to be sent with rotation request (relevant only for rotator-type=custom) |
[optional] |
description |
String |
Description of the object |
[optional][default to 'default_metadata'] |
gcp_key |
String |
Base64-encoded service account private key text |
[optional] |
grace_rotation |
String |
Create a new access key without deleting the old key from AWS for backup (relevant only for AWS) [true/false] |
[optional] |
host_provider |
String |
Host provider type [explicit/target], Default Host provider is explicit, Relevant only for Secure Remote Access of ssh cert issuer, ldap rotated secret and ldap dynamic secret |
[optional] |
json |
Boolean |
Set output format to JSON |
[optional][default to false] |
keep_prev_version |
String |
Whether to keep previous version [true/false]. If not set, use default according to account settings |
[optional] |
key |
String |
The name of a key that used to encrypt the secret value (if empty, the account default protectionKey key will be used) |
[optional] |
name |
String |
Secret name |
|
new_metadata |
String |
Deprecated - use description |
[optional][default to 'default_metadata'] |
new_name |
String |
New item name |
[optional] |
new_version |
Boolean |
Deprecated |
[optional] |
rm_tag |
Array<String> |
List of the existent tags that will be removed from this item |
[optional] |
rotate_after_disconnect |
String |
Rotate the value of the secret after SRA session ends [true/false] |
[optional][default to 'false'] |
rotated_password |
String |
rotated-username password |
[optional] |
rotated_username |
String |
username to be rotated, if selected use-self-creds at rotator-creds-type, this username will try to rotate it's own password, if use-target-creds is selected, target credentials will be use to rotate the rotated-password |
[optional] |
rotation_hour |
Integer |
The Hour of the rotation in UTC |
[optional] |
rotation_interval |
String |
The number of days to wait between every automatic key rotation (7-365) |
[optional] |
rotator_creds_type |
String |
The credentials to connect with use-self-creds/use-target-creds |
[optional][default to 'use-self-creds'] |
rotator_custom_cmd |
String |
"Custom rotation command (relevant only for ssh target) |
[optional] |
same_password |
String |
Rotate same password for each host from the Linked Target (relevant only for Linked Target) |
[optional] |
secure_access_allow_external_user |
Boolean |
Allow providing external user for a domain users (relevant only for rdp) |
[optional][default to false] |
secure_access_aws_account_id |
String |
The AWS account id (relevant only for aws) |
[optional] |
secure_access_aws_native_cli |
Boolean |
The AWS native cli |
[optional] |
secure_access_bastion_issuer |
String |
Path to the SSH Certificate Issuer for your Akeyless Bastion |
[optional] |
secure_access_db_name |
String |
The DB name (relevant only for DB Dynamic-Secret) |
[optional] |
secure_access_db_schema |
String |
The db schema (relevant only for mssql or postgresql) |
[optional] |
secure_access_disable_concurrent_connections |
Boolean |
Enable this flag to prevent simultaneous use of the same secret |
[optional] |
secure_access_enable |
String |
Enable/Disable secure remote access [true/false] |
[optional] |
secure_access_host |
Array<String> |
Target servers for connections (In case of Linked Target association, host(s) will inherit Linked Target hosts - Relevant only for Dynamic Secrets/producers) |
[optional] |
secure_access_rdp_domain |
String |
Required when the Dynamic Secret is used for a domain user (relevant only for RDP Dynamic-Secret) |
[optional] |
secure_access_rdp_user |
String |
Override the RDP Domain username (relevant only for rdp) |
[optional] |
secure_access_url |
String |
Destination URL to inject secrets |
[optional] |
secure_access_web |
Boolean |
Enable Web Secure Remote Access |
[optional][default to false] |
secure_access_web_browsing |
Boolean |
Secure browser via Akeyless Web Access Bastion (relevant only for aws or azure) |
[optional][default to false] |
secure_access_web_proxy |
Boolean |
Web-Proxy via Akeyless Web Access Bastion (relevant only for aws or azure) |
[optional][default to false] |
ssh_password |
String |
Deprecated: use RotatedPassword |
[optional] |
ssh_username |
String |
Deprecated: use RotatedUser |
[optional] |
storage_account_key_name |
String |
The name of the storage account key to rotate [key1/key2/kerb1/kerb2] |
[optional] |
token |
String |
Authentication token (see `/auth` and `/configure`) |
[optional] |
uid_token |
String |
The universal identity token, Required only for universal_identity authentication |
[optional] |
user_attribute |
String |
LDAP User Attribute, Default value "cn" |
[optional][default to 'cn'] |
user_dn |
String |
LDAP User Base DN |
[optional] |