vcert icon indicating copy to clipboard operation
vcert copied to clipboard

Published 20 hours ago verified publisher icon Venafi

Playbook support for storing PEM cert+chain in a single file

Open jyppy opened this issue 1 year ago • 0 comments

BUSINESS PROBLEM The playbook for PEM does not allow for certificate and chain to be stored into a single file (like the vcert enroll command does).

PROPOSED SOLUTION

    - installations:
        - format: PEM
          file: /LOCATION/cert.crt
          chainFile: InCertFile_First |InCertFile_Last | /LOCATION/cert.chain
          keyFile: /Location/cert.key

CURRENT ALTERNATIVES leverage the afterInstallAtion:

    - installations:
        - format: PEM
          afterInstallAction: cat /LOCATION/cert.chain >> /LOCATION/cert.crt ; systemctl ngnix restart

or use vcert enroll in a script

VENAFI EXPERIENCE Use vcert daily

jyppy avatar Sep 20 '23 03:09 jyppy