chaos/salt-master
Archived
2
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
This repository has been archived on 2025-11-20. You can view files and clone it, but cannot push or open issues or pull requests.
Files
4bc4e384d97e44752831aabf6d366f9c5734042a
salt-master/base/pki/signing_policies.conf
do f60cbb6117 distribute intca to /etc/ssl/certs also
2021-02-16 17:05:41 +01:00

20 lines
541 B
YAML
Raw Blame History

# -*- coding: utf-8 -*-
# vim: ft=yaml
---
x509_signing_policies:
host:
#- minions: 'host'
- signing_private_key: /etc/pki/ca.key
- signing_cert: /etc/pki/ca.crt
- C: DE
- ST: Berlin
- L: Berlin
- basicConstraints: "critical CA:false"
- keyUsage: "nonRepudiation, digitalSignature, keyEncipherment, keyAgreement"
- extendedKeyUsage: "serverAuth, clientAuth"
- subjectKeyIdentifier: hash
- authorityKeyIdentifier: keyid,issuer:always
- days_valid: 365
- copypath: /etc/pki/issued_certs/
Reference in New Issue View Git Blame Copy Permalink