mirror of
https://github.com/hashicorp/vault.git
synced 2025-08-22 23:21:08 +02:00
0660ea6fac
* Update README Let contributors know that docs will now be located in UDR * Add comments to each mdx doc Comment has been added to all mdx docs that are not partials * chore: added changelog changelog check failure * wip: removed changelog * Fix content errors * Doc spacing * Update website/content/docs/deploy/kubernetes/vso/helm.mdx Co-authored-by: Tu Nguyen <im2nguyen@users.noreply.github.com> --------- Co-authored-by: jonathanfrappier <92055993+jonathanfrappier@users.noreply.github.com> Co-authored-by: Tu Nguyen <im2nguyen@users.noreply.github.com>
52 lines
2.0 KiB
Plaintext
52 lines
2.0 KiB
Plaintext
---
|
|
layout: docs
|
|
page_title: auth move - Command
|
|
description: |-
|
|
The "auth move" command moves an existing auth method to a new path. All
|
|
tokens from the old auth method are revoked, but all configurations
|
|
associated with the engine are preserved.
|
|
---
|
|
|
|
> [!IMPORTANT]
|
|
> **Documentation Update:** Product documentation, which were located in this repository under `/website`, are now located in [`hashicorp/web-unified-docs`](https://github.com/hashicorp/web-unified-docs), colocated with all other product documentation. Contributions to this content should be done in the `web-unified-docs` repo, and not this one. Changes made to `/website` content in this repo will not be reflected on the developer.hashicorp.com website.
|
|
|
|
# auth move
|
|
|
|
The `auth move` command moves an existing auth method to a new path. Any
|
|
leases from the old auth method are revoked, but all configuration associated
|
|
with the engine is preserved. The command can be issued for a move within or across
|
|
namespaces, using namespace prefixes in the arguments.
|
|
|
|
The command will trigger a remount operation and uses the returned migration ID to poll the
|
|
status of the operation until a terminal state of `success` or `failure` is reached.
|
|
|
|
**Moving an existing auth method will revoke any leases from the old
|
|
method.**
|
|
|
|
## Examples
|
|
|
|
Move the existing auth method at ns1/approle/ to ns2/new-approle/:
|
|
|
|
```shell-session
|
|
$ vault auth move ns1/auth/approle/ ns2/auth/new-approle/
|
|
```
|
|
|
|
Move the existing auth method `auth/userpass` to the `education/certification/approle` namespace.
|
|
|
|
```shell-session
|
|
$ vault auth move auth/userpass education/certification/auth/userpass
|
|
```
|
|
|
|
## Usage
|
|
|
|
There are no flags beyond the [standard set of flags](/vault/docs/commands)
|
|
included on all commands.
|
|
|
|
## Post-move considerations
|
|
|
|
Each namespace has its own policies, auth methods, secrets engines, tokens,
|
|
identity entities and groups. You must consider the following after moving a mount across namespaces:
|
|
|
|
- Necessary policies exist in the target namespace
|
|
- Entities and groups might need updates after an auth method move
|