From 068e080c27e64ed5609bd9cd6448a55e25cce06e Mon Sep 17 00:00:00 2001
From: Scott Miller <smiller@hashicorp.com>
Date: Wed, 22 Jul 2020 13:07:51 -0500
Subject: [PATCH] Add sentinel configuration stanza documentation to OSS
 (#9558)

---
 website/pages/docs/configuration/index.mdx    |  1 +
 website/pages/docs/configuration/sentinel.mdx | 36 +++++++++++++++++++
 2 files changed, 37 insertions(+)
 create mode 100644 website/pages/docs/configuration/sentinel.mdx

diff --git a/website/pages/docs/configuration/index.mdx b/website/pages/docs/configuration/index.mdx
index c6c5edb22..1ed91e60c 100644
--- a/website/pages/docs/configuration/index.mdx
+++ b/website/pages/docs/configuration/index.mdx
@@ -191,5 +191,6 @@ The following parameters are only used with Vault Enterprise
 [seal]: /docs/configuration/seal
 [sealwrap]: /docs/enterprise/sealwrap
 [telemetry]: /docs/configuration/telemetry
+[sentinel]: /docs/configuration/sentinel
 [high-availability]: /docs/concepts/ha
 [plugins]: /docs/plugin
diff --git a/website/pages/docs/configuration/sentinel.mdx b/website/pages/docs/configuration/sentinel.mdx
new file mode 100644
index 000000000..406673bd7
--- /dev/null
+++ b/website/pages/docs/configuration/sentinel.mdx
@@ -0,0 +1,36 @@
+---
+layout: docs
+page_title: Sentinel - Configuration
+sidebar_title: <code>sentinel</code>
+description: |-
+  The sentinel stanza specifies configurations for Vault's Sentinel integration.
+---
+
+
+# `sentinel` Stanza
+
+The sentinel stanza specifies configurations for Vault's Sentinel integration.
+
+```hcl
+sentinel {
+  additional_enabled_modules = ["http"]
+}
+```
+
+## Requirements
+
+A valid Vault Enterprise license is required for use of Sentinel policies.
+
+## `sentinel` Parameters
+
+The sentinel stanza currently supports only one parameter, `additional_enabled_modules`.
+
+- `additional_enabled_modules` `(string array: [])`` - Specifies a list of
+  sentinel policy modules to enable above the default set.  For example,
+  adding "http" to this list indicates sentinel policies may import
+
+  ~> **Warning**: Care should be taken when enabling some modules which
+  could have performance and security implications in policies.  For
+  example, enabling "http" could cause your Vault servers to submit outbound
+  requests to arbitrary endpoints.  See [the Sentinel Documentation](https://docs.hashicorp.com/sentinel/imports/http/)
+  for more information.