foo.sh/ansible
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

node_exporter: More restrictive tls configuration

Browse source
This commit is contained in:
Timo Makinen 2024-02-10 18:59:48 +00:00
parent 2eb65f713f
commit 11c8da0558
1 changed files with 6 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
roles/node_exporter/templates/web-config.yml.j2
View file

@ -4,3 +4,9 @@ tls_server_config:
cert_file: {{ tls_certs }}/{{ inventory_hostname }}.crt cert_file: {{ tls_certs }}/{{ inventory_hostname }}.crt
client_ca_file: {{ tls_certs }}/ca.crt client_ca_file: {{ tls_certs }}/ca.crt
client_auth_type: RequireAndVerifyClientCert client_auth_type: RequireAndVerifyClientCert
client_allowed_sans:
- prometheus01.home.foo.sh
- prometheus02.home.foo.sh
- prometheus03.home.foo.sh
- prometheus04.home.foo.sh
min_version: TLS13