I’m using Azure AD as my OIDC for Vault, however the entity is coming up with a generated name
For example:
entity_04bd5af2
This is making it difficult to understand who is what entity, is there a way to customize what that value is from my OIDC provider? Using the email or display_name instead?
I know I can modify it manually but I’d like to have this come from my provider instead
No - unfortunately the just-in-time entity creation process has no customizability.
The only options available are to pre-create the entities before the users first log in, or periodically run a batch job to look for entities with the default random names, and assign them better names.
There should be enough information stored in the entity-alias metadata though, that writing such a batch job should be fairly easy.