I would like to use eyaml edit to edit my Puppet/Hiera configuration files. My configuration files are a mixture of encrypted and plain text content. I want to use eyaml edit to encrypt certain properties. So initially my files will contain something like:
DEC::PKCS7[securepassword]!
and I understand when I save them via eyaml edit these properties will be encrypted.
I have the public key which my Puppet Enterprise Server uses but I do not have access to the private key (for security reasons).
Can I still use eyaml edit without a private key?
I only want to use it to encrypt properties.
I know I can invoke eyaml encrypt without a private key but I would rather not encrypt each property individually and I don't need to encrypt the entire file.