search

infamousjoeg / cybr-cli

A "Swiss Army Knife" command-line interface (CLI) for easy human and non-human interaction with @CyberArk suite of products.
Apache License 2.0
72 stars 16 forks source link

cybr conjur configure authn-k8s #121

Open infamousjoeg opened 3 years ago

infamousjoeg commented 3 years ago

Is your feature request related to a problem? Please describe. My current problem is I have to manually configure authn-k8s for every service-id I want to utilize.

Describe the solution you'd like I would like to use cybr-cli to automate the configuration given values provided via relevant flags on the command.

Describe alternatives you've considered Alternatives considered were scripting languages automating this, but being within cybr-cli is preferred.

Additional context n/a

infamousjoeg commented 3 years ago

According to @CaptainFluffyToes:

  1. Define service-id
  2. Internal CA has to be initiated
  3. Authenticator enabled for service-id
  4. Service account token, ca.crt, and api-url in the service-id policy needs to be populated into variables
  5. Policy then should be loaded
  6. Permit hosts and seed-fetcher authenticate on the webservice