Hey guys !
We are trying to connect to SSH targets using boundary v0.11. We have been following this tutorial (https://developer.hashicorp.com/boundary/tutorials/hcp-administration/hcp-ssh-cred-injection?in=boundary%2Fhcp-administration#create-credential-library) and also deployed everything through terraform. The credentials are stored in vault and boundary is supposed to depict them from there.
First of all, differently from the tutorial, it seems like boundary target supports only type tcp instead of http (as described here Terraform Registry)
Secondly, when trying to use “injected_application_credential_source_ids”, boundary fails applying with “message”:"Unable to set credential sources in target: tcp.VetCredentialSources: tcp.Target only supports credential purpose: “brokered”.
The issue we have here is that credentials are not injected into the session (because tcp target type doesn’t support them) and therefore we cannot authenticate to SSH target. Is there a workaround for this ? Thanks !
This is the error we see when connecting through CLI:Credentials:
Credential Source Description: Vault credential library!
Credential Source ID: clvlt_YVal4rDiIh
Credential Source Name: vault-cred-library
Credential Store ID: csvlt_todvFosaV0
Credential Store Type: vault
firstname.lastname@example.org: Permission denied (publickey).