Skip to content
This repository has been archived by the owner on Dec 6, 2023. It is now read-only.

* permission denied getting while pulling the secrets #245

Open
san6789 opened this issue Oct 12, 2021 · 1 comment
Open

* permission denied getting while pulling the secrets #245

san6789 opened this issue Oct 12, 2021 · 1 comment

Comments

@san6789
Copy link

san6789 commented Oct 12, 2021

azureuser@vault-1:~$ vault kv get secret/cubbyhole
Error making API request.

URL: GET http://40.86.181.8:8200/v1/sys/internal/ui/mounts/secret/cubbyhole
Code: 403. Errors:

  • permission denied
    azureuser@vault-1:~$
@zaidizeeshan
Copy link

you need to define read capabilities policy if you are not using root token. i.e.

The "readonly" Policy is:
path "sys/internal/ui/mounts/secret/data/cubbyhole" {
capabilities = ["read", "list"]
}

else recheck the vault process. vault service must be running as root

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@zaidizeeshan @san6789