Can't authenticate with Certificate method - client certificate must be supplied

identitymonk · November 22, 2019, 1:53am

Hi,

I enable the Certificate Auth module in Vault but can’t login with it.

Still when I do vault login -method=cert -client-cert=client.crt -client-key=client.key name=myuser I got the following error:

Code: 400. Errors:

* client certificate must be supplied

any thought?

Jeff

tyrannosaurus-becks · November 22, 2019, 7:49pm

I think you need to remove the dash from in front of client-cert and client-key.

ixe013 · April 29, 2021, 3:14am

Stolen from https://stackoverflow.com/a/52405154/591064 (upvote the question and answer, he deserves it)

You must add tls_client_ca_file in your Vault’s HCL configuration file.

Topic		Replies	Views
Vault cert auth Vault vault	4	1014	April 7, 2022
Vault cert login failed over nginx Vault	4	750	June 4, 2021
`vault login -method=cert` not working Vault	1	2049	July 8, 2021
Only cli breaks if vault validates client certs Vault	3	194	April 12, 2023
TLS Certificate auth method and tls_client_ca_file Vault vault	2	1312	October 19, 2022