An organization wants to authenticate an AWS EC2 virtual machine with Vault to access a dynamic database secret. The only authentication method which they can use in this case is AWS.
An organization wants to authenticate an AWS EC2 virtual machine with Vault to access a dynamic database secret. The only authentication method which they can use in this case is AWS.
For an AWS EC2 instance to authenticate and access secrets stored in Vault, the AWS authentication method is indeed used. This method leverages the instance's IAM role to generate a temporary token that allows it to access the secrets securely. Therefore, it is true that the only authentication method they can use in this case is AWS.
False, the authentication method is going to be decided by the type of database involved https://developer.hashicorp.com/vault/tutorials/db-credentials/database-secrets#enable-the-database-secrets-engine