minio/docs
1
0
Fork 0
mirror of https://github.com/minio/docs.git synced 2025-08-06 14:42:56 +03:00
Code Activity
Files
remove-recommended-v2-metrics
docs/source/reference/minio-mc/mc-idp-ldap-accesskey-create.rst
Ravind Kumar 76e5e35ab3 DOCS-1191: Updating SSE params, general fixups (#1295) 
Closes #1191 

# Summary

Finally getting around to this mc release

- Added docs for enc-c, enc-s3, enc-kms
- Some docs are making assumptions around behavior that needs to be
fixed _first_
- Drive-by linker fixes

Staged: http://192.241.195.202:9000/staging/DOCS-1191/linux/index.html

---------

Co-authored-by: Andrea Longo <feorlen@users.noreply.github.com>
Co-authored-by: Daryl White <53910321+djwfyi@users.noreply.github.com>
2024-08-26 11:54:49 -04:00

6.3 KiB
Raw Permalink Blame History

mc idp ldap accesskey create

minio

Table of Contents

mc idp ldap accesskey create

mc RELEASE.2023-12-23T08-47-21Z

Description

The mc idp ldap accesskey create allows you to add LDAP access key pairs.

EXAMPLE

The following example creates a new access key pair with the same policy as the authenticated user on the minio alias <alias>:

class
copyable

mc idp ldap accesskey create minio/

SYNTAX

The command has the following syntax:

mc [GLOBALFLAGS] idp ldap accesskey create                   \
                                 ALIAS                       \
                                 [--access-key <value>]      \
                                 [--secret-key <value>]      \
                                 [--policy <value>]          \
                                 [--name <value>]            \
                                 [--description <value>]     \
                                 [--expiry <value>]          \         
                                 [--expiry-duration <value>]
  • Replace ALIAS with the alias <alias> of a MinIO deployment configured for AD/LDAP integration.

Parameters

ALIAS

The alias <alias> of the MinIO deployment configured for AD/LDAP.

For example:

mc idp ldap accesskey create minio
--access-key

An access key to use for the account. The access key cannot contain the characters = (equal sign) or , (comma).

Requires ~mc idp ldap accesskey create --secret-key

--secret-key

A secret to use for the account.

Requires ~mc idp ldap accesskey create --access-key

--policy

File path to the JSON-formatted policy to use for the account.

If not specified, the account uses the same policy as the authenticated user.

--name

A human-readable name to use for the account.

--description

Add a description for the service account. For example, you might specify the reason the access key exists.

--expiry-duration

Length of time the access key pair should remain valid for use in #d#h#s format.

For example, 7d, 24h, 5d12h30s are valid strings.

Mutually exclusive with ~mc idp ldap accesskey create --expiry.

--expiry

The date after which the access key expires. Enter the date in YYYY-MM-DD format.

For example, to expire the credentials after December 31, 2024, enter 2024-12-31.

Mutually exclusive with ~mc idp ldap accesskey create --expiry-duration.

--login

RELEASE.2024-04-18T16-45-29Z

Use mc idp ldap accesskey create-with-login to access the functionality previously provided by this parameter.

Prompts the user to log in using the LDAP credentials to use to generate the access key. Specify the URL of the LDAP-configured MinIO Server to use for the login prompt.

Requires an interactive terminal.

Global Flags

Behavior

S3 Compatibility

Examples

Create a new access-key pair for the authenticated user

The following command creates a new access key pair to use with the currently authenticated user on the minio alias. The command outputs a randomly generated access key and secret key.

mc idp ldap accesskey create minio

Create a new access-key pair with a custom access key and secret key

The following command creates a new access key pair with both an access key and secret key that you specify for the user currently authenticated on the minio alias.

mc idp ldap accesskey create minio/ --access-key my-access-key-change-me --secret-key my-secret-key-change-me

Create a new access-key pair that expires after 24 hours

The following command creates a new access key pair to use with the currently authenticated user on the minio alias. The credentials expire after 24 hours.

The command outputs a randomly generated access key and secret key.

mc idp ldap accesskey create minio --expiry-duration 24h

Create a new access-key and prompt to login as the user

The following command creates a new access key pair. The MinIO Client will first ask you to log in as the user the access key is for on the MinIO site configured for LDAP at minio.example.com.

The command outputs a randomly generated access key and secret key.

mc idp ldap accesskey create minio --login minio.example.com

Create a new access-key pair that expires after a date

The following command creates a new access key pair to use with the currently authenticated user on the minio alias. The credentials expire after February 29, 2024.

The command outputs a randomly generated access key and secret key.

mc idp ldap accesskey create minio --expiry 2024-02-29