Create vault entity with user okta email

gke · May 25, 2021, 6:03am

Hi, I have configured okta oidc.

vault write auth/oidc/role/default \
      bound_audiences="XX" \
      allowed_redirect_uris="http://localhost:8200/ui/vault/auth/oidc/oidc/callback" \
      user_claim="sub" \
      policies="default" \
      groups_claim="groups" \
      oidc_scopes="email,groups"

When user authenticate and logs in Vault, a entity and aliases is created -
Entity -
Name - entity_9e2ecfa8

and aliases
Aliases-
Name : “openid value”
Do we have way in which instead of openid value I can add email id, if not is possible to add email to metadata in aliases ?

Topic		Replies	Views
Map user entity id to Identity Provider email when using OIDC Vault vault	1	708	January 8, 2023
Vault authentication: adding the correct entity alias for new users Vault vault	4	1128	December 15, 2021
Vault and OKTA OIDC config Vault	12	916	July 30, 2023
Pre-create vault_identity_entity and vault_identity_entity_alias for oidc mount? Terraform Providers vault	2	820	September 6, 2022
While using OIDC, i want to Map user entity id to Identity Provider email Vault	1	333	April 18, 2023

Create vault entity with user okta email

Related topics