-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathintegration-manifest.json
69 lines (69 loc) · 3.45 KB
/
integration-manifest.json
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
{
"$schema": "https://keyfactor.github.io/v2/integration-manifest-schema.json",
"integration_type": "anyca-plugin",
"name": "Entrust ECS AnyCA REST Gateway Plugin",
"status": "production",
"support_level": "kf-supported",
"link_github": true,
"update_catalog": true,
"description": "Entrust ECS plugin for the AnyCA REST Gateway framework",
"gateway_framework": "24.2.0",
"release_dir": "entrust-ecs-caplugin/bin/Release/net6.0",
"about": {
"carest": {
"product_ids": [],
"ca_plugin_config": [
{
"name": "AuthUsername",
"description": "Username for the gateway to authenticate with Entrust"
},
{
"name": "AuthPassword",
"description": "Password for the account used to authenticate with Entrust"
},
{
"name": "ClientCertificate",
"description": "The client certificate information used to authenticate with Entrust (if configured to use certificate authentication). This can be either a Windows cert store name and location (e.g. 'My' and 'LocalMachine' for the Local Computer personal cert store) and thumbprint, or a PFX file and password."
},
{
"name": "Name",
"description": "The default requester name"
},
{
"name": "Email",
"description": "The default requester email address"
},
{
"name": "PhoneNumber",
"description": "The default requester phone number"
},
{
"name": "IgnoreExpired",
"description": "If set to true, will not sync expired certs from Entrust"
},
{
"name": "Enabled",
"description": "Flag to Enable or Disable gateway functionality. Disabling is primarily used to allow creation of the CA prior to configuration information being available."
}
],
"enrollment_config": [
{
"name": "LifetimeMonths",
"description": "OPTIONAL: The number of months of validity to use when requesting certs. If not provided, default is 12."
},
{
"name": "Organization",
"description": "OPTIONAL: For requests that will not have a subject (such as ACME) you can use this field to provide an organization name. Value supplied here will override any CSR values, so do not include this field if you want the organization from the CSR to be used."
},
{
"name": "CertificateUsage",
"description": "Required for public SSL certificate types. Represents the key usage for the certificates enrolled against this template. Valid values are 'server', 'client', or 'serverclient'. Do not provide a value for cert types that are not public SSL."
},
{
"name": "RenewalWindowDays",
"description": "OPTIONAL: The number of days from certificate expiration that the gateway should do a renewal rather than a reissue. If not provided, default is 90."
}
]
}
}
}