This commit is contained in:
claire bontempo 2023-05-02 12:29:14 -07:00 committed by GitHub
parent 8e19338ef5
commit 00e43b88b4
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23

View file

@ -3477,7 +3477,7 @@ the CRL.
revocations on, to regenerate the delta CRL. Must be shorter than CRL revocations on, to regenerate the delta CRL. Must be shorter than CRL
expiry. expiry.
- `cross_cluster_revocation` `(bool: false)` - Enable cross-cluster revocation - `cross_cluster_revocation` `(bool: false)` - Enables cross-cluster revocation
request queues. When a serial not issued on this local cluster is presented request queues. When a serial not issued on this local cluster is presented
to Vault via the [`/revoke` API](#revoke-certificate), it is replicated to Vault via the [`/revoke` API](#revoke-certificate), it is replicated
across clusters and the cluster which issued that certificate will revoke across clusters and the cluster which issued that certificate will revoke
@ -3509,7 +3509,7 @@ the CRL.
unified CRL and OCSP on the existing, previously cluster-local paths unified CRL and OCSP on the existing, previously cluster-local paths
(e.g., `/pki/crl` will now contain the unified CRL when enabled). This (e.g., `/pki/crl` will now contain the unified CRL when enabled). This
allows transitioning AIA-based consumption of CRLs to a unified view allows transitioning AIA-based consumption of CRLs to a unified view
without having to re-issue certificates or update scripts pulling the without having to re-issue certificates or update scripts pulling
a single CRL. a single CRL.
~> Note: `unified_crl_on_existing_paths` is a Vault Enterprise only feature. ~> Note: `unified_crl_on_existing_paths` is a Vault Enterprise only feature.