mirror of
https://github.com/hashicorp/vault.git
synced 2025-08-09 16:17:01 +02:00
06df5b9d95
* Adding check-legacy-links-format workflow * Adding test-link-rewrites workflow * Updating docs-content-check-legacy-links-format hash * Migrating links to new format Co-authored-by: Kendall Strautman <kendallstrautman@gmail.com>
30 lines
1.2 KiB
Plaintext
30 lines
1.2 KiB
Plaintext
---
|
|
layout: docs
|
|
page_title: Vault Agent Auto-Auth Azure Method
|
|
description: Azure Method for Vault Agent Auto-Auth
|
|
---
|
|
|
|
# Vault Agent Auto-Auth Azure Method
|
|
|
|
The `azure` method reads in Azure instance credentials and uses them to
|
|
authenticate with the [Azure Auth
|
|
method](/vault/docs/auth/azure). It reads most
|
|
parameters needed for authentication directly from instance information based
|
|
on the value of the `resource` parameter.
|
|
|
|
## Configuration
|
|
|
|
- `role` `(string: required)` - The role to authenticate against on Vault
|
|
|
|
- `resource` `(string: required)` - The resource name to use when getting instance information
|
|
|
|
- `object_id` `(string: optional)` - The object ID of the user-assigned managed identity to use
|
|
when acquiring an [access token][azure-access-token]. Only one of `object_id` or `client_id`
|
|
may be provided.
|
|
|
|
- `client_id` `(string: optional)` - The client ID of the user-assigned managed identity to use
|
|
when acquiring an [access token][azure-access-token]. Only one of `object_id` or `client_id`
|
|
may be provided.
|
|
|
|
[azure-access-token]: https://docs.microsoft.com/en-us/azure/active-directory/managed-identities-azure-resources/how-to-use-vm-token#get-a-token-using-http
|