OIDC Authentication with IAM

Hi,
I am new to vault and trying to setup OIDC authentication with an IAM provider. I am trying to do the setup on Vault side but while trying to execute the command vault auth enable I am not getting success. Infact I get below message. Its like the command is not accepted. What is missing in the syntax?

Usage: vault [args]

Commands:

  • read Read data and retrieves secrets*
  • kv-get Read data for kv v2 secret engines. Use -metadata flag to read metadata*
  • write Write data, configuration, and secrets*
  • delete Delete secrets and configuration*
  • list List data or secrets*

Web REPL Commands:

  • api Navigate to the Vault API explorer. Use ‘api [filter]’ to prefilter the list.*
  • clear Clear output from the log*
  • clearall Clear output and command history*
  • fullscreen Toggle fullscreen display*
  • refresh Refresh the data on the current screen under the CLI window*

Usage: vault [args]

Commands:

  • read Read data and retrieves secrets*
  • kv-get Read data for kv v2 secret engines. Use -metadata flag to read metadata*
  • write Write data, configuration, and secrets*
  • delete Delete secrets and configuration*
  • list List data or secrets*

Web REPL Commands:

  • api Navigate to the Vault API explorer. Use ‘api [filter]’ to prefilter the list.*
  • clear Clear output from the log*
  • clearall Clear output and command history*
  • fullscreen Toggle fullscreen display*
  • refresh Refresh the data on the current screen under the CLI window*

Hello @sushzhere - looks like (based on the provided output) you are doing this from the CLI emulation feature in the Vault web UI.

CLI emulation only supports a subset of the Vault CLI commands. If you want to enable a plugin using the web UI, you can go to secrets engines or access on the left nav menu.

If you are new to Vault, I would also suggest going through these tutorials:

There is also a tutorial on setting up OIDC with Okta here

1 Like