kubit icon indicating copy to clipboard operation
kubit copied to clipboard

Published 20 hours ago verified publisher icon mgoodness

Improve PKI security & management

Open mgoodness opened this issue 7 years ago • 1 comments

Right now, keys & certificates are created by a shell script and uploaded to an S3 bucket. Security of that bucket and rotation of the PKI assets are mostly left up to the user. We should provide better options, whether it's provided by the upstream CSR API or by third-party tool like Vault.

mgoodness avatar Mar 02 '17 20:03 mgoodness

If this is helpful at all, I'm going to try using this option: http://apparently.me.uk/terraform-certificate-authority/

justicel avatar Apr 19 '17 02:04 justicel