You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Describe the bug
AWS Auth Backend rotate-root does not work, when previously configured the backend with static access_key and secret_key, the aws credentails were rotated but the new access_key and secret_key were not injected in the aws auth backend config.
To Reproduce
Steps to reproduce the behavior:
Run vault auth enable aws
Run vault write /auth/aws/config/client access_key=XXXXXXXXXXXXX secret_key=yyyyyyyyyyyyyyyy
Run vault read auth/aws/config/client and notice the previously added access_key matches
Run vault write -force /auth/aws/config/rotate-root and take a look to the access_key in the output
Run vault read auth/aws/config/client and notice the access_key from rotate-root output doesn't match
Expected behavior
The Output from vault write -force /auth/aws/config/rotate-root and the access_key from vault read auth/aws/config/client after the rotation should match.
Environment:
Vault Server Version 1.7.2 (also tested 1.8.0)
Vault CLI Version 1.7.2 (also tested 1.8.0)
Server Operating System/Architecture: CentOS 7.9.2009
Describe the bug
AWS Auth Backend rotate-root does not work, when previously configured the backend with static access_key and secret_key, the aws credentails were rotated but the new access_key and secret_key were not injected in the aws auth backend config.
To Reproduce
Steps to reproduce the behavior:
vault auth enable aws
vault write /auth/aws/config/client access_key=XXXXXXXXXXXXX secret_key=yyyyyyyyyyyyyyyy
vault read auth/aws/config/client
and notice the previously added access_key matchesvault write -force /auth/aws/config/rotate-root
and take a look to the access_key in the outputvault read auth/aws/config/client
and notice the access_key from rotate-root output doesn't matchExpected behavior
The Output from
vault write -force /auth/aws/config/rotate-root
and the access_key fromvault read auth/aws/config/client
after the rotation should match.Environment:
Vault server configuration file(s):
The text was updated successfully, but these errors were encountered: