Is the ad Check-out credential available to use with credential brokering. I followed the database tutorial just substituting the ad engine and information about the service account but no password returned, wondering if I am using the wrong path.
Are you using the service account library, or the static role credential for the AD engine? Using the library involves a write to the Vault API instead of a read, so it might not work for this purpose.
Also, depending on what you’re doing, you might want to check out using the openldap engine with the ad schema to create dynamic credentials.
Actually, following up, I think you can make the checkout work. The library config supports using the POST method with a request body.
This did work, appreciate the help!