using Vault server with Active Directory secret engine

225 views
Skip to first unread message

Boris Giterman

unread,
Jun 27, 2018, 2:53:28 AM6/27/18
to Vault
Dear Community

We are using Vault server and must add Active Directory secret engine. For some reason, AD secret engine was not found as a part of the Vault setup , we have downloaded (version 0.10.1).
When we tried to enable ad engine, we got the error:
Error enabling: Error making API request.

URL: POST http://127.0.0.1:8200/v1/sys/mounts/ad
Code: 400. Errors:

* unknown backend type: "ad"

The "ad" also does not appear in the UI secrets list box (See attached). Does anybody know how to get this AD secret engine plugin visible or registered in Vault.

Thank you

Secret_engines_no_AD.jpg

Jim Kalafut

unread,
Jun 27, 2018, 3:14:24 AM6/27/18
to vault...@googlegroups.com
Hi Boris,

AD secrets was added in version 0.10.2.  Once you update (0.10.3 is the latest and recommended) you should be able to enable that backend. The feature can be set up as an external plugin to work with 0.10.1, but using the bundled version in a more recent Vault release is a bit simpler. 

Regards,
Jim

--
This mailing list is governed under the HashiCorp Community Guidelines - https://www.hashicorp.com/community-guidelines.html. Behavior in violation of those guidelines may result in your removal from this mailing list.
 
GitHub Issues: https://github.com/hashicorp/vault/issues
IRC: #vault-tool on Freenode
---
You received this message because you are subscribed to the Google Groups "Vault" group.
To unsubscribe from this group and stop receiving emails from it, send an email to vault-tool+...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/vault-tool/1683d773-c099-4194-8e8f-9f4fb207070d%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.

Chris Hoffman

unread,
Jun 27, 2018, 3:14:39 AM6/27/18
to Vault
The Active Directory secret engine was added in 0.10.2 with additional features added in 0.10.3.  I would recommend using the latest version.

Chris
--

Boris Giterman

unread,
Jun 27, 2018, 11:14:39 AM6/27/18
to vault...@googlegroups.com
Hi Jim
Thanks a lot for support. I was able to download this version and enabled AD secrets.
BR
Boris

To view this discussion on the web visit https://groups.google.com/d/msgid/vault-tool/CAPKW6pKaSC223rXUrqJ1uZp3uGEXOjpkbgr2HOHmU2-KSETEgg%40mail.gmail.com.

Boris Giterman

unread,
Jun 27, 2018, 11:14:58 AM6/27/18
to vault...@googlegroups.com
Hi Chris
Thanks a lot for support. I was able to download this version and enabled AD secrets.
BR
Boris

To view this discussion on the web visit https://groups.google.com/d/msgid/vault-tool/057dd351-a0ae-4fe4-ba6b-62345218c0a6%40Spark.
Reply all
Reply to author
Forward
0 new messages