-
Notifications
You must be signed in to change notification settings - Fork 11
/
bmcbutler.yml
56 lines (56 loc) · 1.62 KB
/
bmcbutler.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
locations: ['fra4', 'ams4']
butlersToSpawn: 1
bmcCfgDir: /etc/bmcbutler/cfg
secretsFromVault: true
vault:
hostAddress: "http://172.18.0.2:8200"
#token: "s.vhyEi66wK5PCeqkslrm4Ekd8"
tokenFromFile: "samples/vault-token.test"
#tokenFromEnv: true #VAULT_TOKEN env var required to be set
secretsPath: /secret/baremetal/bmc
# with secretsFromVault, credentials can be looked up from vault
credentials:
- Administrator: lookup_secret::Administrator
- Adminstrator: oldpassword
- root: calvin
- ADMIN: ADMIN
# To declare plain text credentials
#credentials:
# - Administrator: "foobar1"
# - Administrator: "hunter2"
# - user1: "barbar"
# - Administrator: "password"
# - root: "calvin"
# - ADMIN: "ADMIN"
metrics:
graphite:
host: graphite.example.foo
port: 3002
prefix: "foo.bar.bmc.butler"
flushInterval: 5m
# The signer is an executable that is passed CSRs via STDIN
# and expected to return signed certs on STDOUT
# The currently supported signer (look under helpers), uses https://github.com/Netflix/lemur
cert_signer:
lemur:
authority: Test3
validity_years: 1
owner_email: example@foobar.co
auth_token: adszdsarfqwerqwerasdfdfrtqwtrretg.asdfwerfsdf123rtg
endpoint: https://lemur/api/1/certificates
bin: /usr/bin/lemur_csr_signer
# fake:
# passphrase: secret
# bin: /usr/bin/certstrap
# args: ["--depot-path", "/root/ssl/out/", "sign", "--CA", "CertAuth"]
inventory:
enc:
bin: /usr/bin/assetlookup
bmcNicPrefix: ["oa", "ilo"]
#dora:
# apiURL: http://dora.example.com/api
#csv:
# file: /etc/bmcbutler/inventory.csv
power:
hpe:
regulator: static_high