I am attempting to use a DCM connection to Hashicorp Vault but am running into SSL errors: "Could not connect to Vault. Authentication failed. Vault's SSL certificate or SSH fingerprint validation failed" (See attached image)
I have tried both LDAP and mTLS auth with no success - both result in the same SSL error
I am able to successfully invoke the Vault api from the Alteryx server using the following powershell script. This leads me to believe Alteryx DCM may not be leveraging the Windows cert store where my CA certs are located which is causing the SSL validation to fail.
Are there any logs that may provide more detailed information on the SSL error being encountered? Or is there more information on how DCM works with Vault? What cert store does DCM use for SSL verification and can new certs be imported?
$VAULT_TOKEN = 'my-vault-token'
$URL = 'https://my-vault/v1/alteryx/data/AyxSecret'
$resp = Invoke-RestMethod $url -Method get -Headers @{
"X-Vault-Token" = $VAULT_TOKEN
}
$resp
