HashiConf 2024
Now streaming live from Boston!
Attend for free
Dismiss alert
Infrastructure Lifecycle Management
Terraform
Manage infrastructure as code
Packer
Build machine images
Nomad
Orchestrate workloads
Waypoint
Standardize application patterns
Vagrant
Build developer environments
Security Lifecycle Management
Vault
Centrally manage secrets
Boundary
Secure remote access
HCP Vault Secrets
Manage secrets as a service
Consul
Secure network services
HCP Vault Radar
Scan for embedded secrets
HashiCorp Cloud Platform
Get started in minutes with our cloud products
All HCP Products
Learn
Certifications
Get HashiCorp certified
Tutorials
Learn HashiCorp products
Well-Architected Framework
Adopt HashiCorp best practices
Vault
Install
Tutorials
Documentation
API
Integrations
Try Cloud
(opens in new tab)
Search
Command or control key
K key
Sign in
Sign up
Theme
Vault Home
Documentation
Documentation
What is Vault?
Use Cases
Get Started
Browser Support
Install Vault
Run Vault as a service
Internals
Concepts
Configuration
Vault CLI
Vault GUI
Vault tools: Agent and Proxy
Secrets Engines
Secrets Sync
ENTERPRISE
ENTERPRISE
Secrets Import
ENTERPRISE
ENTERPRISE
Auth Methods
Overview
AppRole
AliCloud
AWS
Azure
Cloud Foundry
GitHub
Google Cloud
JWT/OIDC
Overview
OIDC Providers
Overview
ADFS
Auth0
Azure AD
Forgerock
Gitlab
Google
Keycloak
Kubernetes
Okta
SecureAuth
IBM ISAM
Kerberos
Kubernetes
LDAP
Login MFA
Oracle Cloud Infrastructure
Okta
RADIUS
SAML
ENTERPRISE
ENTERPRISE
TLS Certificates
Tokens
Username and Password
Audit Devices
Plugins
Vault Integration Program
Vault interoperability matrix
Troubleshoot Vault
Platforms
Upgrade Guides
Release Notes
Deprecation notices
FAQ
Glossary
Vault Enterprise
Resources
Tutorial Library
Certifications
Community Forum
(opens in new tab)
Support
(opens in new tab)
GitHub
(opens in new tab)
Developer
Vault
Documentation
Auth Methods
JWT/OIDC
OIDC Providers
Gitlab
v1.18.x (latest)
Vault
v1.17.x
v1.16.x
v1.15.x
v1.14.x
v1.13.x
v1.12.x
v1.11.x
Gitlab
Visit Settings > Applications.
Fill out Name and Redirect URIs.
Making sure to select the "openid" scope.
Copy client ID and secret.
Edit this page on GitHub