Re: [Puppet Users] using vault

['Ben Ford' via Puppet Users]

Deferred functions run on the agent. The Vault connection will be made from the 
agent. Therefor, if you configure Vault using environment variables, you'll 
want to do so from the agent. If you're using systemd, you should be able to 
configure those in the .service file as you suggest.




On May 24, 2023, at 12:13 PM, 'sli...@verizon.net' via Puppet Users 
 wrote:

Hello,

I have vault set up using role and secret id
I downloaded puppetlabs-vault module and saw the code snippet with that module 
https://www.puppet.com/integrations/vault-by-hashicorp

With vault_lookup::lookup deferred method, i don't want to pass my role and 
secret, so other option is set as environment variables. Question is do i need 
to set that up on puppet server or puppet agent? Where may be the best place to 
set that up? if it is on puppet server, can i set that up in say puppet.service 
file? if on agent, where may be the right place to set that up?

Thanks

S

--
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to 
puppet-users+unsubscr...@googlegroups.com.
To view this discussion on the web visit 
https://groups.google.com/d/msgid/puppet-users/4792f478-c0a9-4b3c-b51e-eef9bc107f0dn%40googlegroups.com.


CAUTION: This email originated from outside of the organization. Do not click 
on links or open attachments unless you recognize the sender and know the 
content is safe.



This e-mail may contain information that is privileged or confidential. If you 
are not the intended recipient, please delete the e-mail and any attachments 
and notify us immediately.

-- 
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to puppet-users+unsubscr...@googlegroups.com.
To view this discussion on the web visit 
https://groups.google.com/d/msgid/puppet-users/C92B442F-5FA0-4451-B6F7-09436857DF28%40perforce.com.

[Puppet Users] using vault

['sli...@verizon.net' via Puppet Users]

Hello,

I have vault set up using role and secret id
I downloaded puppetlabs-vault module and saw the code snippet with that 
module https://www.puppet.com/integrations/vault-by-hashicorp

*With vault_lookup::lookup deferred method, i don't want to pass my role 
and secret, so other option is set as environment variables. Question is do 
i need to set that up on puppet server or puppet agent? Where may be the 
best place to set that up? if it is on puppet server, can i set that up in 
say puppet.service file? if on agent, where may be the right place to set 
that up?*

*Thanks*

*S*

-- 
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to puppet-users+unsubscr...@googlegroups.com.
To view this discussion on the web visit 
https://groups.google.com/d/msgid/puppet-users/4792f478-c0a9-4b3c-b51e-eef9bc107f0dn%40googlegroups.com.