List hashicorp vault lidentities using cli

pantelis-karamolegko · December 27, 2022, 1:41pm

I have set up oidc auth backend in my Hashicorp vault instance.

I (as also some colleagues) have managed to login using our corporate email.

However the following command returns no results

▶ vault list identity/identity/oidc
No value found at identity/identity/oidc

The one below does return some uuid - like values

▶ vault list identity/entity/id

Is there a way to list the identities associated with the oidc auth backend (and how to get / view details for each one)

jeffsanicola · December 27, 2022, 2:05pm

You would need to use the Identity Lookup function.

Should be something like this:

vault write identity/lookup/entity alias_mount_accessor=${oidc_mount_accessor}

maxb · December 27, 2022, 2:12pm

That’s not a valid path… did you just make up something random to try?

Try this command:

vault read -format=json identity/entity/id list=true

Topic		Replies	Views
Vault login OIDC via Onelogin Vault vault	9	919	June 16, 2023
Vault as an OAuth/OIDC Identity Provider Vault	7	3173	December 13, 2021
While using OIDC, i want to Map user entity id to Identity Provider email Vault	1	326	April 18, 2023
How To Access My Vault OIDC Logs and JWT Claim Metadata Vault	1	841	June 30, 2022
HashiCorp Vault Authentication using Azure Active Directory & Terraform Vault	0	338	March 27, 2022