Link Search Menu Expand Document
vault-connect

Configuration file

The configuration file vault-config.properties must be placed under the directory $MID_SERVER_BASE_PATH/agent/properties The file location and name can be overriden by setting the MID_VAULT_CONFIG environment variable

Each property into the configuration file can have three kinds of values :

  1. the value itself
  2. the name of a MID server property (properties tab) prefixed by snc:. For example: snc:name_of_mid_property
  3. the name of an environment variable prefixed by env:. For example: env:name_of_env_variable.

When a property value references a MID server property or an environment variable, these references will be resolved.

Here is an example of the configuration file.

vault.uri=https://my.domain.com:8200
vault.ssl.key-store=file:D:\\mid-server\\agent\\properties\\store\\client.jfla.com.jks
vault.ssl.key-store-password=changeit
vault.ssl.trust-store=file:D:\\mid-server\\agent\\properties\\store\\vaultTrustStore.jks
vault.ssl.trust-store-password=changeit
vault.authentication=APPROLE
# vault app-role configuration
vault.app-role.app-role-path=approle
vault.app-role.role-id=snc:vault.app-role.role-id
vault.app-role.secret-id=c86383ec-3cdc-d077-2992-97a5dce34346
# vault kv configuration
vault.secret.kv.basepath=secret/data
vault.secret.kv.username=username
vault.secret.kv.password=password
# vault snmp configuration
vault.secret.snmp.basepath=secret/data/discovery
vault.secret.snmp.community=ro-community
# vault ad configuration
vault.secret.ad.username=username
vault.secret.ad.password=current_password
# vault ssh private key configuration
vault.secret.ssh_private_key.basepath=secret/data
vault.secret.ssh_private_key.username=username
vault.secret.ssh_private_key.password=password
vault.secret.ssh_private_key.privateKey=private_key
vault.secret.ssh_private_key.passphrase=passphrase
# vault aws
vault.secret.aws.basepath=aws/sts
vault.secret.aws.username=access_key
vault.secret.aws.password=secret_key
# log configuration
log.file-handler.pattern=logs/vault-connect.log
log.file-handler.append=true
log.file-handler.limit=10000000
log.file-handler.count=10
log.override=true
log.level=FINEST
log.format=%1$tY-%1$tm-%1$td %1$tH:%1$tM:%1$tS.%1$tL %4$-6s %7$s %5$s%6$s%n
# cache configuration
vault.client.caching.clean.initialDelay=PT2M
vault.client.caching.clean.fixedDelay=PT5M
# license configuration
license.keystore.file=
license.keystore.password=
license.value=file:\\properties\\license_client.txt
license.key=client1234

Back to top

Last updated 2020-12-29

Copyright © 2020 JFLA Consulting