asc.core.services_vault role – Deploy a server with HashiCorp Vault

Note

This role is part of the asc.core collection (version 1.0.4).

It is not included in ansible-core. To check whether it is installed, run ansible-galaxy collection list.

To install it use: git clone git@ssh.dev.azure.com:v3/cloudasc/iac-ansible-collections/core $HOME/.ansible/collections/ansible_collections/asc/core.

To use it in a playbook, specify: asc.core.services_vault.

Entry point main – Deploy a server with HashiCorp Vault

New in asc.core 1.0.0

Synopsis

  • Deploy a server with HashiCorp Vault

Parameters

Parameter

Comments

services_vault

dictionary

‘services_vault’ role configuration

app_display_name

string

Display name of the application to register in Azure AD

Default: "Vault"

ca_description

string

Description of the CA

Default: "Vault CA"

enabled

boolean

Whether to enable the role

Choices:

  • false ← (default)

  • true

owners

list / elements=string

List of owners of the application to register in Azure AD (email addresses)

Default: []

smallstep_version

string

Version of smallstep to install

Default: "0.23.2"

users

list / elements=string

List of users of the application to register in Azure AD (email addresses)

Default: []

vm_name

string

Name of the VM to deploy

Default: "vmovpn01"

vm_size

string

Size of the VM to deploy (Azure VM size)

Default: "Standard_B2ms"

Authors

  • Lorenzo Bernardi