thalesgroup.ciphertrust.cm_regtoken module – Create or update registration token
Note
This module is part of the thalesgroup.ciphertrust collection (version 1.0.0).
To install it, use: ansible-galaxy collection install thalesgroup.ciphertrust
.
To use it in a playbook, specify: thalesgroup.ciphertrust.cm_regtoken
.
New in thalesgroup.ciphertrust 1.0.0
Synopsis
The module is to create or update client registration token
Parameters
Parameter |
Comments |
---|---|
ID of the trusted Certificate Authority that will be used to sign client certificate during registration process. By default local Certificate Authority will be used to issue certificates. |
|
Duration in days for which the CipherTrust Manager client’s certificate is valid, default (730). Default: |
|
registration token ID to be updated |
|
Label is the key value pair. In case of KMIP client registration, Key is KmipClientProfile and in case of PA client registration Key is ClientProfile. Value for the key is the profile name of protectapp/Kmip client profile to be mapped with the token for protectapp/Kmip client registration. |
|
Duration in minutes/hours/days for which this token can be used for registering CipherTrust Manager clients. No limit by default. For 'x' amount of time, it should formatted as xm for x minutes, xh for hours and xd for days. |
|
this holds the connection parameters required to communicate with an instance of CipherTrust Manager (CM) holds IP/FQDN of the server, username, password, and port |
|
admin password of CM |
|
CM Server IP or FQDN |
|
Port on which CM server is listening Default: |
|
internal or private IP of the CM Server, if different from the server_ip |
|
admin username of CM |
|
if SSL verification is required Choices:
|
|
Maximum number of clients that can be registered using this registration token. No limit by default. |
|
Prefix for the client name. For a client registered using this registration token, name_prefix, if specified, client name will be constructed as 'name_prefix{nth client registered using this registation token}', If name_prefix is not specified, CipherTrust Manager server will generate a random name for the client. |
|
Operation to be performed Choices:
|
Examples
- name: "Create Registration Token"
thalesgroup.ciphertrust.cm_regtoken:
localNode:
server_ip: "IP/FQDN of CipherTrust Manager"
server_private_ip: "Private IP in case that is different from above"
server_port: 5432
user: "CipherTrust Manager Username"
password: "CipherTrust Manager Password"
verify: false
op_type: create
ca_id: 76c4da32-0953-4c6a-bf77-c5a70314244c
cert_duration: 730
label:
ClientProfile: DefaultClientProfile
lifetime: 30d
max_clients: 100
name_prefix: "ansible_client"