Setting up a consul cluster, trying to understand the requirements of the connect token on the servers (connect > ca_config > token in config). Is this going to be used for initial bootstrap and can therefore be short-lived, or does one have to setup rotation/renewal as well?
Hi @MWinther, we recommend using a token that has the renewable option set in Vault so that Consul can renew the lease before the token expires.
(source: https://developer.hashicorp.com/consul/docs/agent/config/config-files#vault_ca_token)