Skip to content

Salt toolkit to manage X.509 PKI keys and certificates and customizable remote signing.

License

Notifications You must be signed in to change notification settings

jgraichen/salt-pki

Repository files navigation

Salt PKI

This repository contains a collection of execution modules and states to manage X.509 keys, certificate signing requests and certificates. It does support modern EC suites. The actual signing can be delegated to other execution modules or runners, such as acme.sign.

The current version focuses on the needs for TLS certificates and external signing (e.g. ACME, Vault, custom modules).

Modules

See _modules/pki.py.

States

See _states/pki.py.

Installation

The recommended way of installation is using salt gitfs on the salt master.

# /etc/salt/master
gitfs_remotes:
  - "https://github.com/jgraichen/salt-pki.git":
      - base: v1.0.1

If you want to use execution modules on the salt master, e.g. in runners, remember to synchronize modules on the master:

salt-run saltutil.sync_modules

About

Salt toolkit to manage X.509 PKI keys and certificates and customizable remote signing.

Resources

License

Stars

Watchers

Forks

Packages

No packages published

Languages