Docs Home
akeyless 1.9.0 published on Monday, Apr 14, 2025 by akeyless-community
akeyless.SshCertIssuer
Explore with Pulumi AI
akeyless 1.9.0 published on Monday, Apr 14, 2025 by akeyless-community
SSH Cert Issuer resource
Create SshCertIssuer Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new SshCertIssuer(name: string, args: SshCertIssuerArgs, opts?: CustomResourceOptions);@overload
def SshCertIssuer(resource_name: str,
args: SshCertIssuerArgs,
opts: Optional[ResourceOptions] = None)
@overload
def SshCertIssuer(resource_name: str,
opts: Optional[ResourceOptions] = None,
allowed_users: Optional[str] = None,
ttl: Optional[float] = None,
signer_key_name: Optional[str] = None,
name: Optional[str] = None,
extensions: Optional[Mapping[str, str]] = None,
principals: Optional[str] = None,
secure_access_bastion_api: Optional[str] = None,
secure_access_bastion_ssh: Optional[str] = None,
secure_access_enable: Optional[str] = None,
secure_access_hosts: Optional[Sequence[str]] = None,
secure_access_ssh_creds_user: Optional[str] = None,
secure_access_use_internal_bastion: Optional[bool] = None,
description: Optional[str] = None,
ssh_cert_issuer_id: Optional[str] = None,
tags: Optional[Sequence[str]] = None,
delete_protection: Optional[bool] = None)func NewSshCertIssuer(ctx *Context, name string, args SshCertIssuerArgs, opts ...ResourceOption) (*SshCertIssuer, error)public SshCertIssuer(string name, SshCertIssuerArgs args, CustomResourceOptions? opts = null)
public SshCertIssuer(String name, SshCertIssuerArgs args)
public SshCertIssuer(String name, SshCertIssuerArgs args, CustomResourceOptions options)
type: akeyless:SshCertIssuer
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args SshCertIssuerArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args SshCertIssuerArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args SshCertIssuerArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args SshCertIssuerArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args SshCertIssuerArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var sshCertIssuerResource = new Akeyless.SshCertIssuer("sshCertIssuerResource", new()
{
AllowedUsers = "string",
Ttl = 0,
SignerKeyName = "string",
Name = "string",
Extensions =
{
{ "string", "string" },
},
Principals = "string",
SecureAccessBastionApi = "string",
SecureAccessBastionSsh = "string",
SecureAccessEnable = "string",
SecureAccessHosts = new[]
{
"string",
},
SecureAccessSshCredsUser = "string",
SecureAccessUseInternalBastion = false,
Description = "string",
SshCertIssuerId = "string",
Tags = new[]
{
"string",
},
DeleteProtection = false,
});
example, err := akeyless.NewSshCertIssuer(ctx, "sshCertIssuerResource", &akeyless.SshCertIssuerArgs{
AllowedUsers: pulumi.String("string"),
Ttl: pulumi.Float64(0),
SignerKeyName: pulumi.String("string"),
Name: pulumi.String("string"),
Extensions: pulumi.StringMap{
"string": pulumi.String("string"),
},
Principals: pulumi.String("string"),
SecureAccessBastionApi: pulumi.String("string"),
SecureAccessBastionSsh: pulumi.String("string"),
SecureAccessEnable: pulumi.String("string"),
SecureAccessHosts: pulumi.StringArray{
pulumi.String("string"),
},
SecureAccessSshCredsUser: pulumi.String("string"),
SecureAccessUseInternalBastion: pulumi.Bool(false),
Description: pulumi.String("string"),
SshCertIssuerId: pulumi.String("string"),
Tags: pulumi.StringArray{
pulumi.String("string"),
},
DeleteProtection: pulumi.Bool(false),
})
var sshCertIssuerResource = new SshCertIssuer("sshCertIssuerResource", SshCertIssuerArgs.builder()
.allowedUsers("string")
.ttl(0)
.signerKeyName("string")
.name("string")
.extensions(Map.of("string", "string"))
.principals("string")
.secureAccessBastionApi("string")
.secureAccessBastionSsh("string")
.secureAccessEnable("string")
.secureAccessHosts("string")
.secureAccessSshCredsUser("string")
.secureAccessUseInternalBastion(false)
.description("string")
.sshCertIssuerId("string")
.tags("string")
.deleteProtection(false)
.build());
ssh_cert_issuer_resource = akeyless.SshCertIssuer("sshCertIssuerResource",
allowed_users="string",
ttl=0,
signer_key_name="string",
name="string",
extensions={
"string": "string",
},
principals="string",
secure_access_bastion_api="string",
secure_access_bastion_ssh="string",
secure_access_enable="string",
secure_access_hosts=["string"],
secure_access_ssh_creds_user="string",
secure_access_use_internal_bastion=False,
description="string",
ssh_cert_issuer_id="string",
tags=["string"],
delete_protection=False)
const sshCertIssuerResource = new akeyless.SshCertIssuer("sshCertIssuerResource", {
allowedUsers: "string",
ttl: 0,
signerKeyName: "string",
name: "string",
extensions: {
string: "string",
},
principals: "string",
secureAccessBastionApi: "string",
secureAccessBastionSsh: "string",
secureAccessEnable: "string",
secureAccessHosts: ["string"],
secureAccessSshCredsUser: "string",
secureAccessUseInternalBastion: false,
description: "string",
sshCertIssuerId: "string",
tags: ["string"],
deleteProtection: false,
});
type: akeyless:SshCertIssuer
properties:
allowedUsers: string
deleteProtection: false
description: string
extensions:
string: string
name: string
principals: string
secureAccessBastionApi: string
secureAccessBastionSsh: string
secureAccessEnable: string
secureAccessHosts:
- string
secureAccessSshCredsUser: string
secureAccessUseInternalBastion: false
signerKeyName: string
sshCertIssuerId: string
tags:
- string
ttl: 0
SshCertIssuer Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The SshCertIssuer resource accepts the following input properties:
- Allowed
Users string - Users allowed to fetch the certificate, e.g root,ubuntu
- Signer
Key stringName - A key to sign the certificate with
- Ttl double
- The requested Time To Live for the certificate, in seconds
- Delete
Protection bool - Protection from accidental deletion of this item, [true/false]
- Description string
- Description of the object
- Extensions Dictionary<string, string>
- Signed certificates with extensions (key/val), e.g permit-port-forwarding=
- Name string
- SSH certificate issuer name
- Principals string
- Signed certificates with principal, e.g examplerole1,examplerole2
- Secure
Access stringBastion Api - Bastion's SSH control API endpoint. E.g. https://my.bastion:9900
- Secure
Access stringBastion Ssh - Bastion's SSH server. E.g. my.bastion:22
- Secure
Access stringEnable - Enable/Disable secure remote access, [true/false]
- Secure
Access List<string>Hosts - Target servers for connections. (In case of Linked Target association, host(s) will inherit Linked Target hosts - Relevant only for Dynamic Secrets/producers)
- Secure
Access stringSsh Creds User - SSH username to connect to target server, must be in 'Allowed Users' list
- Secure
Access boolUse Internal Bastion - Use internal SSH Bastion
- Ssh
Cert stringIssuer Id - The ID of this resource.
- List<string>
- List of the tags attached to this key. To specify multiple tags use argument multiple times: --tag Tag1 --tag Tag2
- Allowed
Users string - Users allowed to fetch the certificate, e.g root,ubuntu
- Signer
Key stringName - A key to sign the certificate with
- Ttl float64
- The requested Time To Live for the certificate, in seconds
- Delete
Protection bool - Protection from accidental deletion of this item, [true/false]
- Description string
- Description of the object
- Extensions map[string]string
- Signed certificates with extensions (key/val), e.g permit-port-forwarding=
- Name string
- SSH certificate issuer name
- Principals string
- Signed certificates with principal, e.g examplerole1,examplerole2
- Secure
Access stringBastion Api - Bastion's SSH control API endpoint. E.g. https://my.bastion:9900
- Secure
Access stringBastion Ssh - Bastion's SSH server. E.g. my.bastion:22
- Secure
Access stringEnable - Enable/Disable secure remote access, [true/false]
- Secure
Access []stringHosts - Target servers for connections. (In case of Linked Target association, host(s) will inherit Linked Target hosts - Relevant only for Dynamic Secrets/producers)
- Secure
Access stringSsh Creds User - SSH username to connect to target server, must be in 'Allowed Users' list
- Secure
Access boolUse Internal Bastion - Use internal SSH Bastion
- Ssh
Cert stringIssuer Id - The ID of this resource.
- []string
- List of the tags attached to this key. To specify multiple tags use argument multiple times: --tag Tag1 --tag Tag2
- allowed
Users String - Users allowed to fetch the certificate, e.g root,ubuntu
- signer
Key StringName - A key to sign the certificate with
- ttl Double
- The requested Time To Live for the certificate, in seconds
- delete
Protection Boolean - Protection from accidental deletion of this item, [true/false]
- description String
- Description of the object
- extensions Map<String,String>
- Signed certificates with extensions (key/val), e.g permit-port-forwarding=
- name String
- SSH certificate issuer name
- principals String
- Signed certificates with principal, e.g examplerole1,examplerole2
- secure
Access StringBastion Api - Bastion's SSH control API endpoint. E.g. https://my.bastion:9900
- secure
Access StringBastion Ssh - Bastion's SSH server. E.g. my.bastion:22
- secure
Access StringEnable - Enable/Disable secure remote access, [true/false]
- secure
Access List<String>Hosts - Target servers for connections. (In case of Linked Target association, host(s) will inherit Linked Target hosts - Relevant only for Dynamic Secrets/producers)
- secure
Access StringSsh Creds User - SSH username to connect to target server, must be in 'Allowed Users' list
- secure
Access BooleanUse Internal Bastion - Use internal SSH Bastion
- ssh
Cert StringIssuer Id - The ID of this resource.
- List<String>
- List of the tags attached to this key. To specify multiple tags use argument multiple times: --tag Tag1 --tag Tag2
- allowed
Users string - Users allowed to fetch the certificate, e.g root,ubuntu
- signer
Key stringName - A key to sign the certificate with
- ttl number
- The requested Time To Live for the certificate, in seconds
- delete
Protection boolean - Protection from accidental deletion of this item, [true/false]
- description string
- Description of the object
- extensions {[key: string]: string}
- Signed certificates with extensions (key/val), e.g permit-port-forwarding=
- name string
- SSH certificate issuer name
- principals string
- Signed certificates with principal, e.g examplerole1,examplerole2
- secure
Access stringBastion Api - Bastion's SSH control API endpoint. E.g. https://my.bastion:9900
- secure
Access stringBastion Ssh - Bastion's SSH server. E.g. my.bastion:22
- secure
Access stringEnable - Enable/Disable secure remote access, [true/false]
- secure
Access string[]Hosts - Target servers for connections. (In case of Linked Target association, host(s) will inherit Linked Target hosts - Relevant only for Dynamic Secrets/producers)
- secure
Access stringSsh Creds User - SSH username to connect to target server, must be in 'Allowed Users' list
- secure
Access booleanUse Internal Bastion - Use internal SSH Bastion
- ssh
Cert stringIssuer Id - The ID of this resource.
- string[]
- List of the tags attached to this key. To specify multiple tags use argument multiple times: --tag Tag1 --tag Tag2
- allowed_
users str - Users allowed to fetch the certificate, e.g root,ubuntu
- signer_
key_ strname - A key to sign the certificate with
- ttl float
- The requested Time To Live for the certificate, in seconds
- delete_
protection bool - Protection from accidental deletion of this item, [true/false]
- description str
- Description of the object
- extensions Mapping[str, str]
- Signed certificates with extensions (key/val), e.g permit-port-forwarding=
- name str
- SSH certificate issuer name
- principals str
- Signed certificates with principal, e.g examplerole1,examplerole2
- secure_
access_ strbastion_ api - Bastion's SSH control API endpoint. E.g. https://my.bastion:9900
- secure_
access_ strbastion_ ssh - Bastion's SSH server. E.g. my.bastion:22
- secure_
access_ strenable - Enable/Disable secure remote access, [true/false]
- secure_
access_ Sequence[str]hosts - Target servers for connections. (In case of Linked Target association, host(s) will inherit Linked Target hosts - Relevant only for Dynamic Secrets/producers)
- secure_
access_ strssh_ creds_ user - SSH username to connect to target server, must be in 'Allowed Users' list
- secure_
access_ booluse_ internal_ bastion - Use internal SSH Bastion
- ssh_
cert_ strissuer_ id - The ID of this resource.
- Sequence[str]
- List of the tags attached to this key. To specify multiple tags use argument multiple times: --tag Tag1 --tag Tag2
- allowed
Users String - Users allowed to fetch the certificate, e.g root,ubuntu
- signer
Key StringName - A key to sign the certificate with
- ttl Number
- The requested Time To Live for the certificate, in seconds
- delete
Protection Boolean - Protection from accidental deletion of this item, [true/false]
- description String
- Description of the object
- extensions Map<String>
- Signed certificates with extensions (key/val), e.g permit-port-forwarding=
- name String
- SSH certificate issuer name
- principals String
- Signed certificates with principal, e.g examplerole1,examplerole2
- secure
Access StringBastion Api - Bastion's SSH control API endpoint. E.g. https://my.bastion:9900
- secure
Access StringBastion Ssh - Bastion's SSH server. E.g. my.bastion:22
- secure
Access StringEnable - Enable/Disable secure remote access, [true/false]
- secure
Access List<String>Hosts - Target servers for connections. (In case of Linked Target association, host(s) will inherit Linked Target hosts - Relevant only for Dynamic Secrets/producers)
- secure
Access StringSsh Creds User - SSH username to connect to target server, must be in 'Allowed Users' list
- secure
Access BooleanUse Internal Bastion - Use internal SSH Bastion
- ssh
Cert StringIssuer Id - The ID of this resource.
- List<String>
- List of the tags attached to this key. To specify multiple tags use argument multiple times: --tag Tag1 --tag Tag2
Outputs
All input properties are implicitly available as output properties. Additionally, the SshCertIssuer resource produces the following output properties:
- Id string
- The provider-assigned unique ID for this managed resource.
- Id string
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
- id string
- The provider-assigned unique ID for this managed resource.
- id str
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
Look up Existing SshCertIssuer Resource
Get an existing SshCertIssuer resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: SshCertIssuerState, opts?: CustomResourceOptions): SshCertIssuer@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
allowed_users: Optional[str] = None,
delete_protection: Optional[bool] = None,
description: Optional[str] = None,
extensions: Optional[Mapping[str, str]] = None,
name: Optional[str] = None,
principals: Optional[str] = None,
secure_access_bastion_api: Optional[str] = None,
secure_access_bastion_ssh: Optional[str] = None,
secure_access_enable: Optional[str] = None,
secure_access_hosts: Optional[Sequence[str]] = None,
secure_access_ssh_creds_user: Optional[str] = None,
secure_access_use_internal_bastion: Optional[bool] = None,
signer_key_name: Optional[str] = None,
ssh_cert_issuer_id: Optional[str] = None,
tags: Optional[Sequence[str]] = None,
ttl: Optional[float] = None) -> SshCertIssuerfunc GetSshCertIssuer(ctx *Context, name string, id IDInput, state *SshCertIssuerState, opts ...ResourceOption) (*SshCertIssuer, error)public static SshCertIssuer Get(string name, Input<string> id, SshCertIssuerState? state, CustomResourceOptions? opts = null)public static SshCertIssuer get(String name, Output<String> id, SshCertIssuerState state, CustomResourceOptions options)resources: _: type: akeyless:SshCertIssuer get: id: ${id}- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Allowed
Users string - Users allowed to fetch the certificate, e.g root,ubuntu
- Delete
Protection bool - Protection from accidental deletion of this item, [true/false]
- Description string
- Description of the object
- Extensions Dictionary<string, string>
- Signed certificates with extensions (key/val), e.g permit-port-forwarding=
- Name string
- SSH certificate issuer name
- Principals string
- Signed certificates with principal, e.g examplerole1,examplerole2
- Secure
Access stringBastion Api - Bastion's SSH control API endpoint. E.g. https://my.bastion:9900
- Secure
Access stringBastion Ssh - Bastion's SSH server. E.g. my.bastion:22
- Secure
Access stringEnable - Enable/Disable secure remote access, [true/false]
- Secure
Access List<string>Hosts - Target servers for connections. (In case of Linked Target association, host(s) will inherit Linked Target hosts - Relevant only for Dynamic Secrets/producers)
- Secure
Access stringSsh Creds User - SSH username to connect to target server, must be in 'Allowed Users' list
- Secure
Access boolUse Internal Bastion - Use internal SSH Bastion
- Signer
Key stringName - A key to sign the certificate with
- Ssh
Cert stringIssuer Id - The ID of this resource.
- List<string>
- List of the tags attached to this key. To specify multiple tags use argument multiple times: --tag Tag1 --tag Tag2
- Ttl double
- The requested Time To Live for the certificate, in seconds
- Allowed
Users string - Users allowed to fetch the certificate, e.g root,ubuntu
- Delete
Protection bool - Protection from accidental deletion of this item, [true/false]
- Description string
- Description of the object
- Extensions map[string]string
- Signed certificates with extensions (key/val), e.g permit-port-forwarding=
- Name string
- SSH certificate issuer name
- Principals string
- Signed certificates with principal, e.g examplerole1,examplerole2
- Secure
Access stringBastion Api - Bastion's SSH control API endpoint. E.g. https://my.bastion:9900
- Secure
Access stringBastion Ssh - Bastion's SSH server. E.g. my.bastion:22
- Secure
Access stringEnable - Enable/Disable secure remote access, [true/false]
- Secure
Access []stringHosts - Target servers for connections. (In case of Linked Target association, host(s) will inherit Linked Target hosts - Relevant only for Dynamic Secrets/producers)
- Secure
Access stringSsh Creds User - SSH username to connect to target server, must be in 'Allowed Users' list
- Secure
Access boolUse Internal Bastion - Use internal SSH Bastion
- Signer
Key stringName - A key to sign the certificate with
- Ssh
Cert stringIssuer Id - The ID of this resource.
- []string
- List of the tags attached to this key. To specify multiple tags use argument multiple times: --tag Tag1 --tag Tag2
- Ttl float64
- The requested Time To Live for the certificate, in seconds
- allowed
Users String - Users allowed to fetch the certificate, e.g root,ubuntu
- delete
Protection Boolean - Protection from accidental deletion of this item, [true/false]
- description String
- Description of the object
- extensions Map<String,String>
- Signed certificates with extensions (key/val), e.g permit-port-forwarding=
- name String
- SSH certificate issuer name
- principals String
- Signed certificates with principal, e.g examplerole1,examplerole2
- secure
Access StringBastion Api - Bastion's SSH control API endpoint. E.g. https://my.bastion:9900
- secure
Access StringBastion Ssh - Bastion's SSH server. E.g. my.bastion:22
- secure
Access StringEnable - Enable/Disable secure remote access, [true/false]
- secure
Access List<String>Hosts - Target servers for connections. (In case of Linked Target association, host(s) will inherit Linked Target hosts - Relevant only for Dynamic Secrets/producers)
- secure
Access StringSsh Creds User - SSH username to connect to target server, must be in 'Allowed Users' list
- secure
Access BooleanUse Internal Bastion - Use internal SSH Bastion
- signer
Key StringName - A key to sign the certificate with
- ssh
Cert StringIssuer Id - The ID of this resource.
- List<String>
- List of the tags attached to this key. To specify multiple tags use argument multiple times: --tag Tag1 --tag Tag2
- ttl Double
- The requested Time To Live for the certificate, in seconds
- allowed
Users string - Users allowed to fetch the certificate, e.g root,ubuntu
- delete
Protection boolean - Protection from accidental deletion of this item, [true/false]
- description string
- Description of the object
- extensions {[key: string]: string}
- Signed certificates with extensions (key/val), e.g permit-port-forwarding=
- name string
- SSH certificate issuer name
- principals string
- Signed certificates with principal, e.g examplerole1,examplerole2
- secure
Access stringBastion Api - Bastion's SSH control API endpoint. E.g. https://my.bastion:9900
- secure
Access stringBastion Ssh - Bastion's SSH server. E.g. my.bastion:22
- secure
Access stringEnable - Enable/Disable secure remote access, [true/false]
- secure
Access string[]Hosts - Target servers for connections. (In case of Linked Target association, host(s) will inherit Linked Target hosts - Relevant only for Dynamic Secrets/producers)
- secure
Access stringSsh Creds User - SSH username to connect to target server, must be in 'Allowed Users' list
- secure
Access booleanUse Internal Bastion - Use internal SSH Bastion
- signer
Key stringName - A key to sign the certificate with
- ssh
Cert stringIssuer Id - The ID of this resource.
- string[]
- List of the tags attached to this key. To specify multiple tags use argument multiple times: --tag Tag1 --tag Tag2
- ttl number
- The requested Time To Live for the certificate, in seconds
- allowed_
users str - Users allowed to fetch the certificate, e.g root,ubuntu
- delete_
protection bool - Protection from accidental deletion of this item, [true/false]
- description str
- Description of the object
- extensions Mapping[str, str]
- Signed certificates with extensions (key/val), e.g permit-port-forwarding=
- name str
- SSH certificate issuer name
- principals str
- Signed certificates with principal, e.g examplerole1,examplerole2
- secure_
access_ strbastion_ api - Bastion's SSH control API endpoint. E.g. https://my.bastion:9900
- secure_
access_ strbastion_ ssh - Bastion's SSH server. E.g. my.bastion:22
- secure_
access_ strenable - Enable/Disable secure remote access, [true/false]
- secure_
access_ Sequence[str]hosts - Target servers for connections. (In case of Linked Target association, host(s) will inherit Linked Target hosts - Relevant only for Dynamic Secrets/producers)
- secure_
access_ strssh_ creds_ user - SSH username to connect to target server, must be in 'Allowed Users' list
- secure_
access_ booluse_ internal_ bastion - Use internal SSH Bastion
- signer_
key_ strname - A key to sign the certificate with
- ssh_
cert_ strissuer_ id - The ID of this resource.
- Sequence[str]
- List of the tags attached to this key. To specify multiple tags use argument multiple times: --tag Tag1 --tag Tag2
- ttl float
- The requested Time To Live for the certificate, in seconds
- allowed
Users String - Users allowed to fetch the certificate, e.g root,ubuntu
- delete
Protection Boolean - Protection from accidental deletion of this item, [true/false]
- description String
- Description of the object
- extensions Map<String>
- Signed certificates with extensions (key/val), e.g permit-port-forwarding=
- name String
- SSH certificate issuer name
- principals String
- Signed certificates with principal, e.g examplerole1,examplerole2
- secure
Access StringBastion Api - Bastion's SSH control API endpoint. E.g. https://my.bastion:9900
- secure
Access StringBastion Ssh - Bastion's SSH server. E.g. my.bastion:22
- secure
Access StringEnable - Enable/Disable secure remote access, [true/false]
- secure
Access List<String>Hosts - Target servers for connections. (In case of Linked Target association, host(s) will inherit Linked Target hosts - Relevant only for Dynamic Secrets/producers)
- secure
Access StringSsh Creds User - SSH username to connect to target server, must be in 'Allowed Users' list
- secure
Access BooleanUse Internal Bastion - Use internal SSH Bastion
- signer
Key StringName - A key to sign the certificate with
- ssh
Cert StringIssuer Id - The ID of this resource.
- List<String>
- List of the tags attached to this key. To specify multiple tags use argument multiple times: --tag Tag1 --tag Tag2
- ttl Number
- The requested Time To Live for the certificate, in seconds
Package Details
- Repository
- akeyless akeyless-community/terraform-provider-akeyless
- License
- Notes
- This Pulumi package is based on the
akeylessTerraform Provider.
akeyless 1.9.0 published on Monday, Apr 14, 2025 by akeyless-community