vault_ldap_auth_backend

Provides a resource for managing an LDAP auth backend within Vault.

Example Usage

resource "vault_ldap_auth_backend" "ldap" {
    path        = "ldap"
    url         = "ldaps://dc-01.example.org"
    userdn      = "OU=Users,OU=Accounts,DC=example,DC=org"
    userattr    = "sAMAccountName"
    upndomain   = "EXAMPLE.ORG"
    discoverdn  = false
    groupdn     = "OU=Groups,DC=example,DC=org"
    groupfilter = "(&(objectClass=group)(member:1.2.840.113556.1.4.1941:={{.UserDN}}))"
}

Argument Reference

The following arguments are supported:

Common Token Arguments

These arguments are common across several Authentication Token resources since Vault 1.2.

For more details on the usage of each argument consult the Vault LDAP API documentation.

Attributes Reference

In addition to the fields above, the following attributes are exported:

Import

LDAP authentication backends can be imported using the path, e.g.

$ terraform import vault_ldap_auth_backend.ldap ldap