summaryrefslogtreecommitdiffstats
path: root/base/deploy/config/pkideployment.cfg
diff options
context:
space:
mode:
Diffstat (limited to 'base/deploy/config/pkideployment.cfg')
-rw-r--r--base/deploy/config/pkideployment.cfg45
1 files changed, 28 insertions, 17 deletions
diff --git a/base/deploy/config/pkideployment.cfg b/base/deploy/config/pkideployment.cfg
index 6630907..9582484 100644
--- a/base/deploy/config/pkideployment.cfg
+++ b/base/deploy/config/pkideployment.cfg
@@ -1,21 +1,24 @@
###############################################################################
-## 'Sensitive' Data: ##
-## ##
-## Values in this section pertain to various PKI subsystems, and contain ##
-## required 'sensitive' information which MUST ALWAYS be provided by users. ##
-## ##
-## IMPORTANT: Sensitive data values must NEVER be displayed to the ##
-## console NOR stored in log files!!! ##
-###############################################################################
-[Sensitive]
-pki_admin_password=
-pki_backup_password=
-pki_client_database_password=
-pki_client_pkcs12_password=
-pki_clone_pkcs12_password=
-pki_ds_password=
-pki_security_domain_password=
-pki_token_password=
+## 'Sensitive' Parameters: ##
+## ##
+## Parameters listed in below pertain to various PKI subsystems, and ##
+## contain 'sensitive' information which must NEVER be displayed to the ##
+## console NOR stored in log files!!! ##
+###############################################################################
+[DEFAULT]
+sensitive_parameters=
+ pki_admin_password
+ pki_backup_password
+ pki_client_database_password
+ pki_client_pkcs12_password
+ pki_clone_pkcs12_password
+ pki_ds_password
+ pki_security_domain_password
+ pki_token_password
+ pki_pin
+ pki_client_pin
+ pki_one_time_pin
+
###############################################################################
## 'Common' Data: ##
## ##
@@ -36,6 +39,7 @@ pki_admin_name=
pki_admin_nickname=
pki_admin_subject_dn=
pki_admin_uid=
+pki_admin_password=
pki_audit_group=pkiaudit
pki_audit_signing_key_algorithm=SHA256withRSA
pki_audit_signing_key_size=2048
@@ -45,11 +49,15 @@ pki_audit_signing_signing_algorithm=SHA256withRSA
pki_audit_signing_subject_dn=
pki_audit_signing_token=
pki_backup_keys=False
+pki_backup_password=
pki_client_database_dir=
+pki_client_database_password=
pki_client_database_purge=True
pki_client_dir=
+pki_client_pkcs12_password=
pki_ds_base_dn=
pki_ds_bind_dn=cn=Directory Manager
+pki_ds_password=
pki_ds_database=
pki_ds_hostname=
pki_ds_ldap_port=389
@@ -63,6 +71,7 @@ pki_security_domain_hostname=
pki_security_domain_https_port=8443
pki_security_domain_name=
pki_security_domain_user=
+pki_security_domain_password=
pki_skip_configuration=False
pki_skip_installation=False
pki_ssl_server_key_algorithm=SHA256withRSA
@@ -78,6 +87,7 @@ pki_subsystem_nickname=
pki_subsystem_subject_dn=
pki_subsystem_token=
pki_token_name=internal
+pki_token_password=
pki_user=pkiuser
###############################################################################
## 'Apache' Data: ##
@@ -109,6 +119,7 @@ pki_https_port=443
pki_ajp_port=8009
pki_clone=False
pki_clone_pkcs12_path=
+pki_clone_pkcs12_password=
pki_clone_replicate_schema=True
pki_clone_replication_master_port=
pki_clone_replication_clone_port=