diff options
| author |  Joe Banks <[email protected]> | 2024-05-30 15:17:14 +0100 |
|---|---|---|
| committer | Joe Banks <[email protected]> | 2024-05-30 15:17:14 +0100 |
| commit | 45c5f89acbac4529d06bb0d68064bd2bde120a02 (patch) | |
| tree | 9a15ed70eecd9c25d3c687df28963fb98d7051d8 | |
| parent | Restart Prometheus instead of reload after web config update (diff) | |
Enable mTLS SAN validation
| -rw-r--r-- | ansible/host_vars/lovelace/prometheus.yml | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/ansible/host_vars/lovelace/prometheus.yml b/ansible/host_vars/lovelace/prometheus.yml index be8e860..dda5c20 100644 --- a/ansible/host_vars/lovelace/prometheus.yml +++ b/ansible/host_vars/lovelace/prometheus.yml @@ -15,6 +15,9 @@ prometheus_web_configuration: client_auth_type: RequireAndVerifyClientCert client_ca_file: /opt/pydis/ca.pem + client_allowed_sans: + - prometheus.access.tls.pydis.wtf + prometheus_configuration: global: scrape_interval: 15s # Set the scrape interval to every 15 seconds. Default is every 1 minute. |