Hi @pete0emerson, thanks for trying out Boundary - and glad to hear our getting started tutorial was helpful!
You are indeed reading the roadmap correctly. Our goal is for Boundary users, once authenticated, to be able to seamlessly access their targets with secrets brokered by Boundary from Vault (or a preferred secrets management solution) such that the secrets don’t need to be managed by the user. Making use of Vault’s ssh signed certificates to securely ssh to Boundary targets is a great example of a possible use-case for this scenario.
We are still actively planning and working on this capability so unfortunately we don’t yet have a precise timeline yet. That said, our public roadmap is in prioritized order so given Vault integration is at #2 you can assume it will be coming in an upcoming release sooner rather than later (following OIDC authentication, the #1 item).