Vault monitoring with Prometheus

Hi !
I want to implement monitoring to my vault by using Prometheus, everything is fine and running but i wanted to create a unique token for Prometheus (instead of the root token).
Here is my policy for this token :

path "sys/metrics/*" {
    capabilities = ["read"]

But the token doesn’t seem to have the permissions to access this path. Is there something that I missed ?


i think the path needs to be like this policy

path "sys/metrics*" {
    capabilities = ["read"]

It worked, thank you !

1 Like

No problem. Glad I could help