Last updated
Last updated
The PKIJKS-Type is the same as the . The only difference is that it converts the issued certificate into a Java Key Store.
How to generate a PKI is documented by HashiCorp in their Secrets Engine documentation. For a short simple example please see the
After you have generated a PKI create the Vault resource in Kubernetes:
Now you should see the Vault resource in Kubernetes and the newly generated secret:
The Java Key Store is saved by default in the key.jks field. It's possible to change the field via the jksConfiguration Object:
The field password defines the password that's used to secure the Key Store. The alias is for defining the name of the TLS-Certificate in the Key store and the key name is for specifying the save path in the secret.
For more details please see !