Skip to content

Latest commit

 

History

History
69 lines (50 loc) · 2.7 KB

configure-credential-brokering.mdx

File metadata and controls

69 lines (50 loc) · 2.7 KB
Raw
layout page_title description
docs
Configure targets with credential brokering
Configure credential brokering workflows so that Boundary centrally manages credentials and returns them to users when they successfully connect to a target.

Configure targets with credential brokering

The following section provides steps to configure your targets with credential brokering. When you use credential brokering, Boundary returns credentials to the user when they successfully connect to a target.

Requirements

  • You must have an existing target available.

  • You must have configured either a static credential store or a Vault credential store:

  • You must have a static credential saved in your static credential store or Vault credential store. The credential must correspond to the target you want to authenticate to.

Configuration

Complete the following steps to configure credential brokering for a target:

  1. Log in to Boundary.
  2. Select Orgs on the navigation pane.
  3. Select your desired org.
  4. Select the project where your target resides.
  5. Click Targets on the navigation pane.
  6. Click on the target you want to configure for credential brokering.
  7. Click on the Brokered Credential tab.
  8. Click Managed and select Add Brokered Credential in the pull down menu.
  9. Do one of the following:
    • If you are using a static credential store: Select the credential that corresponds to your target and click Add Brokered Credentials.
    • If you are using a Vault credential store: Select the credential library that corresponds to your target and click Add Brokered Credentials.
  1. Log into Boundary.
$ boundary authenticate
Please enter the login name (it will be hidden):
Please enter the password (it will be hidden):
  1. Add brokered credentials to target.
$ boundary targets add-credential-sources \
  -id ttcp_vO60a7TwpI \
  -application-credential-source csvlt_Xqa6V6QwfM

If you are using a static credential store, brokered-credential-source refers to the ID of a credential in the static credential store.

If you are using a Vault credential store, brokered-credential-source refers to the ID of a credential library in the Vault credential store.