credential-libraries create
Command: boundary credential-libraries create
The credential-libraries create
command lets you create a credential library resource in Boundary.
Examples
The following example creates a credential library for database credentials where Vault's database secrets engine provides dynamic credentials:
Example output:
Usage
Command options
-credential-store-id
(string: "")
- The credential store resource to use for the operation. You can also specify the credential store using the BOUNDARY_CREDENTIAL_STORE_ID environment variable.-description
(string: "")
- A description of the credential library.-name
(string: "")
- The name of the credential library.
Usages by type
The available types are vault-generic
and vault-ssh-certificate
.
Note
A credential library type, vault
is deprecated, so use vault-generic
type instead.
The credential-libraries create vault-generic
command lets you create a generic Vault credential library.
Example
The following example creates a generic Vault credential library using a credential store with the ID csvlt_1234567890
:
Usage
Vault credential library options
The following are specific Vault credential library options in addition to the command options:
-credential-mapping-override
- An override for credential mapping.-credential-type
(string: "")
- The type of credential this library issues. The default value isUnspecified
.-vault-http-method
(string: "")
- The HTTP method the library should use when it communicates with Vault.-vault-http-request-body
(string: "")
- The HTTP request body the credential library uses to communicate with Vault. This value can be the HTTP request body value itself, it can refer to a file on disk (file://
) from which the value is read, or it can refer to an environment variable (env://
) from which the value is read.-vault-path
(string: "")
- The path in Vault to request credentials from.
CLI options
In addition to the command specific options, there are options common to all CLI commands and subcommands: