HashiCorp Vault plugin requires following configuration settings:


Parameter

Description

Example

vaultURL

Vault address (HTTP/HTTPS)

https://10.1.127.31:8200

token

Token generated via login/AppRole/other auth

hvs.EkUYG34L76vGpt8jfCDqCpdS

engineTypes

Engines to include in discovery search

["pki", "transit", "kv"]

timeoutSeconds

Request timeout in seconds

30


Example Plugin Configuration

{
"vaultUrl": "https://your-vault-server.example.com:8200",
"vaultToken": "<your-vault-token>",
"engineTypes": ["kv", "transit", "pki"],
"namespace": "<optional-enterprise-namespace>",
"skipTlsVerify": optional-true/false,
"timeoutSeconds": <timeout-in-seconds>
}


Troubleshooting

  • Connection issues: verify vaultUrl, network reachability, TLS settings.
  • Permission errors: review policies and engine mount paths (KV v2 uses data/ and metadata/).
  • Docker on Linux: use --network=host or the bridge IP (172.17.0.1).