Skip to content

Commit 9546b51

Browse files
hc-github-team-secure-vault-corethyton
hc-github-team-secure-vault-core
and
thyton
authored
backport of commit 8f3b2fb (#30058)
Co-authored-by: Thy Ton <[email protected]>
1 parent 731f790 commit 9546b51

File tree

1 file changed

+10
-0
lines changed

1 file changed

+10
-0
lines changed

website/content/docs/upgrading/upgrade-to-1.19.x.mdx

Lines changed: 10 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -14,6 +14,16 @@ Vault 1.18. **Please read carefully**.
1414

1515
## Important changes
1616

17+
### Azure auth plugin requires `resource_group_name`, `vm_name`, and `vmss_name` to match the JWT claims on login
18+
19+
Vault versions before 1.19.1, 1.18.7, 1.17.14, and 1.16.18, do not strictly
20+
validate the `resource_group_name`, `vm_name`, and `vmss_name` parameters
21+
against their token claims during login with Azure authentication.
22+
23+
Refer to the [Token validation](/vault/docs/auth/azure#token-validation) section
24+
of the Azure authN plugin guide for more information on the new validation
25+
requirements.
26+
1727
### Transit support for Ed25519ph and Ed25519ctx signatures ((#ed25519))
1828

1929
**NOTE**: This only applies to Transit Ed25519 keys.

0 commit comments

Comments
 (0)