search

hashicorp / docker-vault

Official Docker images for Vault
Mozilla Public License 2.0
500 stars 222 forks source link

* permission denied getting while pulling the secrets #245

Open san6789 opened 3 years ago

san6789 commented 3 years ago

azureuser@vault-1:~$ vault kv get secret/cubbyhole Error making API request.

URL: GET http://40.86.181.8:8200/v1/sys/internal/ui/mounts/secret/cubbyhole Code: 403. Errors:

zaidizeeshan commented 2 years ago

you need to define read capabilities policy if you are not using root token. i.e.

The "readonly" Policy is:
path "sys/internal/ui/mounts/secret/data/cubbyhole" {
capabilities = ["read", "list"]
}

else recheck the vault process. vault service must be running as root