Please enable JavaScript.

Coggle requires JavaScript to display documents.

Auth method - Coggle Diagram

- - - - 1.3 role name: aws-approle
        
        1.1 Create a policy document (aws-approle-policy.hcl)
        1.2 Create a policy (aws-approle-pol)
        1.3 Create a role
        (vault write /auth/approle/role/aws-approle token_ttl=5m token_max_ttl=15m token_policie=aws-approle-pol)
        
        has policy
        
        1.2 Policy name: aws-approle-pol
        
        has policy doc
        
        1.1 aws-approle-policy.hcl
        path aws-master/*
        {
        capabilites = ["read"]
        }
        
        vault policy write aws-approle-pol aws-approle-policy.hcl
        
        generate
        
        role_id
        
        vault read /auth/approle/role/aws-approle/role-id
        
        log into the Vault
        
        vault write /auth/approle/login role_id=xxx secret_id=xxx
        
        vault generate token
        
        User can perform actions describe in policy document attached to the role (aws-approle)
        
        has ttl
        
        1 more item...
        
        secret_id
        
        vault write -f /auth/approle/role/aws-approle/secret-id