Module to interact with keystores
salt.modules.keystore.
add
(name, keystore, passphrase, certificate, private_key=None)¶Adds certificates to an existing keystore or creates a new one if necesssary.
Parameters: |
|
---|
CLI Example:
salt '*' keystore.add aliasname /tmp/test.store changeit /tmp/testcert.crt
salt '*' keystore.add aliasname /tmp/test.store changeit certificate="-----BEGIN CERTIFICATE-----SIb...BM=-----END CERTIFICATE-----"
salt '*' keystore.add keyname /tmp/test.store changeit /tmp/512.cert private_key=/tmp/512.key
salt.modules.keystore.
list
(keystore, passphrase, alias=None, return_cert=False)¶Lists certificates in a keytool managed keystore.
Parameters: |
|
---|
Warning
There are security implications for using return_cert to return decrypted certificates.
CLI Example:
salt '*' keystore.list /usr/lib/jvm/java-8/jre/lib/security/cacerts changeit
salt '*' keystore.list /usr/lib/jvm/java-8/jre/lib/security/cacerts changeit debian:verisign_-_g5.pem
salt.modules.keystore.
remove
(name, keystore, passphrase)¶Removes a certificate from an existing keystore. Returns True if remove was successful, otherwise False
Parameters: |
|
---|
CLI Example:
salt '*' keystore.remove aliasname /tmp/test.store changeit
Docs for previous releases are available on readthedocs.org.
Latest Salt release: latest_release