Requiring users to use secrets for credentials when creating connections
When a user creates a connection, they can provide their credentials by entering them directly or by specifying a secret. A Red Hat® OpenShift® administrator can configure Cloud Pak for Data to enforce the exclusive use of secrets from an external vault (such as CyberArk or HashiCorp).
- Permissions that you need for this task
- You must have the following permissions to restrict user access to
connections with external vault secrets.
- Administrator of the Red Hat OpenShift project (namespace) where Cloud Pak for Data is installed.
- When you need to complete this task
- You can complete this task anytime after Cloud Pak for Data is installed.
Before you begin
Best practice: You can run the commands in
this task exactly as written if you set up environment variables. For instructions, see Setting up installation environment variables.
Ensure that you source the environment variables before you run the commands in this task.
About this task
allow-only-vaulted-credentials
to
true
.