With Active Directory secret engine correctly configured (I can Check-Out by vault cli), on Web UI I see /ad path present but grayed out. It is by design, so it is not possible to interact with this secret engine on Web UI or it is a luck of specific permission in policy ?
It’s a limitation of the GUI currently. I’ve asked for this feature as well, but have no idea if/when it’ll be added.
got it !
I have a use case using AD Secret Engine for temporary privileged accounts (using Service Account Check-Out mechanism) so Web UI is a must for not devops users (who are not familiar with vault cli or api tools).
I hope support for Web UI will be added soon.