To help facilitate the use of the vault integration in an automation scenario, we would like to propose the need to allow the AppRole authentication method to be supported with the vault integration framework. The support would allow the most flexibility in defining roles that can be used to control vault functionality as opposed to those constraints that would be needed by a user type login. We are heavily involved in integrating our vault technology to automation tasks and need a way to define roles instead of individual login parameters. Please view the attached link that describe the AppRole Authentication login method. See documentation here:
Keeping in mind security and the automation theme, allow a pull to obtain the secret key would be appropriate and appears to be the preferred method to obtain the secret-id. Refer to the documentation located here :
Please let us know if any additional details are required to document sufficiently the need for the vault integration changes or enhancements.
this is currently provided I guess: https://docs.microfocus.com/itom/Universal_CMDB:2020.02/IntegHashiCorp
You have to only specify the attributes to be role and not username.