Skip to content

Commit

Permalink
Update wording on WAN fed and intermediate_pki_path
Browse files Browse the repository at this point in the history
  • Loading branch information
Chris S. Kim committed Jun 26, 2023
1 parent 33a2d90 commit 8655b7d
Showing 1 changed file with 4 additions and 2 deletions.
6 changes: 4 additions & 2 deletions website/content/docs/connect/ca/vault.mdx
Original file line number Diff line number Diff line change
Expand Up @@ -139,8 +139,10 @@ The key after the slash refers to the corresponding option name in the agent con
path does not exist, Consul will attempt to mount and configure this
automatically.

When WAN Federation is enabled, every secondary
datacenter must specify a unique `intermediate_pki_path`.
When WAN Federation is enabled, every secondary datacenter which shares a common Vault cluster
must specify a unique `intermediate_pki_path`. If a Vault cluster is not being used by more than
one Consul datacenter, then this is not required. However, it is still recommended to use a
unique `intermediate_pki_path` per datacenter for operational and diagnostic clarity.

- `IntermediatePKINamespace` / `intermediate_pki_namespace` (`string: <optional>`) - The absolute namespace
that the `IntermediatePKIPath` is in. Setting this parameter overrides the `Namespace` option for the `IntermediatePKIPath`. Introduced in 1.12.3.
Expand Down

0 comments on commit 8655b7d

Please sign in to comment.