From d1241b5286db3de2f59a177d81e02d6c8f64a259 Mon Sep 17 00:00:00 2001 From: Hridoy Roy Date: Tue, 26 Jan 2021 21:06:38 -0800 Subject: [PATCH] changelog for entropy augmentation PR [VAULT-1179] (#10755) * changelog for entropy augmentation * docs upgrade * docs upgrade * docs upgrade * docs upgrade --- changelog/_ 1686.txt | 3 +++ website/content/api-docs/secret/kmip.mdx | 8 ++++++-- 2 files changed, 9 insertions(+), 2 deletions(-) create mode 100644 changelog/_ 1686.txt diff --git a/changelog/_ 1686.txt b/changelog/_ 1686.txt new file mode 100644 index 000000000..a4faefa86 --- /dev/null +++ b/changelog/_ 1686.txt @@ -0,0 +1,3 @@ +```release-note:feature +kmip (enterprise): Use entropy augmentation to generate kmip certificates +``` \ No newline at end of file diff --git a/website/content/api-docs/secret/kmip.mdx b/website/content/api-docs/secret/kmip.mdx index 5c5a99ce6..af68d9f27 100644 --- a/website/content/api-docs/secret/kmip.mdx +++ b/website/content/api-docs/secret/kmip.mdx @@ -24,7 +24,9 @@ update your API calls accordingly. This endpoint configures shared information for the secrets engine. After writing to it the KMIP engine will generate a CA and start listening for KMIP requests. If the server was already running and any non-client settings are changed, the -server will be restarted using the new settings. +server will be restarted using the new settings. All generated CAs will use +entropy augmentation to generate their certificates if entropy augmentation +is enabled. ### Parameters @@ -402,7 +404,9 @@ $ curl \ | :----- | :-------------------------------------------------- | | `POST` | `/kmip/scope/:scope/role/:role/credential/generate` | -Create a new client certificate tied to the given role and scope. +Create a new client certificate tied to the given role and scope. +This endpoint uses entropy augmentation to generate the client certificate +if entropy augmentation is enabled. ### Parameters