From 52d857a30228742787174834b8cf612f9bac88ff Mon Sep 17 00:00:00 2001 From: Mariano Cano Date: Thu, 24 Sep 2020 12:43:25 -0700 Subject: [PATCH] Update CloudCAS instructions. --- docs/cas.md | 15 ++++++++------- 1 file changed, 8 insertions(+), 7 deletions(-) diff --git a/docs/cas.md b/docs/cas.md index 002e42d5..3318fb04 100644 --- a/docs/cas.md +++ b/docs/cas.md @@ -85,23 +85,24 @@ or using `gcloud` CLI: ```sh # Create service account - gcloud iam service-accounts create step-ca-sa \ + gcloud iam service-accounts create mariano-ca-sa \ --project smallstep-cas-test \ - --description "Step-CA Service Account" \ - --display-name "Step-CA Service Account" + --description "Mariano-CA Service Account" \ + --display-name "mariano-CA Service Account" # Add permissions to use the privateca API gcloud projects add-iam-policy-binding smallstep-cas-test \ - --member=serviceAccount:step-ca-sa@smallstep-cas-test.iam.gserviceaccount.com \ + --member=serviceAccount:mariano-ca-sa@smallstep-cas-test.iam.gserviceaccount.com \ + --role=roles/privateca.caManager \ --role=roles/privateca.certificateRequester # Download the credentials.file gcloud iam service-accounts keys create credentials.json \ - --iam-account step-ca-sa@smallstep-cas-test.iam.gserviceaccount.com + --iam-account mariano-ca-sa@smallstep-cas-test.iam.gserviceaccount.com ``` 5. Create a Root CA. You can do this on the console or running: ```sh - gcloud alpha privateca roots create prod-root-ca \ + gcloud beta privateca roots create prod-root-ca \ --kms-key-version "$KMS_ROOT_KEY_VERSION" \ --subject "CN=Example Root CA, O=Example LLC" \ --max-chain-length 2 @@ -110,7 +111,7 @@ or using `gcloud` CLI: 6. Create an Intermediate CA. You can do this on the console or running: ```sh - gcloud alpha privateca subordinates create prod-intermediate-ca \ + gcloud beta privateca subordinates create prod-intermediate-ca \ --issuer prod-root-ca --issuer-location us-west1 \ --kms-key-version "$KMS_INTERMEDIATE_KEY_VERSION" \ --subject "CN=Example Intermediate CA, O=Example LLC" \