/ home / thalesgroup / thalesgroup.ciphertrust / 1.0.0 / module / cckm_az_secret

thalesgroup.ciphertrust.cckm_az_secret (1.0.0) — module

CCKM module for Azure Secrets

| "added in version" 1.0.0 of thalesgroup.ciphertrust"

Authors: Anurag Jain, Developer Advocate Thales Group

Install collection

Install with ansible-galaxy collection install thalesgroup.ciphertrust:==1.0.0

Add to requirements.yml

  collections:
    - name: thalesgroup.ciphertrust
      version: 1.0.0

Description

This is a Thales CipherTrust Manager module for working with the CipherTrust Manager APIs, more specifically with CCKM for Azure Secrets API

Usage examples

Scanned by Steampunk Spotter

- name: "Create Azure Secret"
  thalesgroup.ciphertrust.cckm_az_secret:
    localNode:
        server_ip: "IP/FQDN of CipherTrust Manager"
        server_private_ip: "Private IP in case that is different from above"
        server_port: 5432
        user: "CipherTrust Manager Username"
        password: "CipherTrust Manager Password"
        verify: false
    op_type: create

Inputs

    
tags:
    description: Application specific metadata in the form of key-value pair.
    type: dict

job_id:
    description: Synchronization job ID to be cancelled
    type: str

op_type:
    choices:
    - create
    - update
    - secret_op
    - create-sync-job
    - cancel-sync-job
    description: Operation to be performed
    required: true
    type: str

key_vault:
    description: Azure secret parameters.
    type: dict

localNode:
    description:
    - this holds the connection parameters required to communicate with an instance of
      CipherTrust Manager (CM)
    - holds IP/FQDN of the server, username, password, and port
    required: true
    suboptions:
      password:
        description: admin password of CM
        required: true
        type: str
      server_ip:
        description: CM Server IP or FQDN
        required: true
        type: str
      server_port:
        default: 5432
        description: Port on which CM server is listening
        required: true
        type: int
      server_private_ip:
        description: internal or private IP of the CM Server, if different from the server_ip
        required: true
        type: str
      user:
        description: admin username of CM
        required: true
        type: str
      verify:
        default: false
        description: if SSL verification is required
        required: true
        type: bool
    type: dict

secret_id:
    description: Azure Secret Identifier to be acted upton
    type: str

attributes:
    description: Secret attributes to be updated.
    type: dict

key_vaults:
    description: Name or ID of key vaults from which Azure secrets will be synchronized.
      synchronize_all and key_vaults are mutually exclusive. Specify either the synchronize_all
      or key_vaults.
    type: dict

azure_param:
    description: Azure secret parameters.
    type: dict

secret_name:
    description: Name for the Azure secret. Secret names can only contain alphanumeric
      characters and hyphens.
    type: dict

secret_op_type:
    choices:
    - soft-delete
    - hard-delete
    - restore
    - recover
    description: Operation to be performed
    type: str

synchronize_all:
    description: Set true to synchronize all secrets from all vaults. synchronize_all
      and key_vaults are mutually exclusive. Specify either the synchronize_all or key_vaults.
    type: dict