Active Directory secret engine Check-out service accounts from Web UI

With Active Directory secret engine correctly configured (I can Check-Out by vault cli), on Web UI I see /ad path present but grayed out. It is by design, so it is not possible to interact with this secret engine on Web UI or it is a luck of specific permission in policy ?

It’s a limitation of the GUI currently. I’ve asked for this feature as well, but have no idea if/when it’ll be added.

Hi @jeffsanicola,
got it !

I have a use case using AD Secret Engine for temporary privileged accounts (using Service Account Check-Out mechanism) so Web UI is a must for not devops users (who are not familiar with vault cli or api tools).

Thank you.
I hope support for Web UI will be added soon.