Linked Target

Introduction

Linked Target is an item that represents a collection of hosts which are considered equivalent for access control while sharing privileged credentials.

For example, a Dynamic Secret that is used for Secure Remote Access can be created with a Linked Target that uses the privilege credentials which are stored within a standard Target, where users that are sharing the same access level can use a single Dynamic Secret item to generate JIT credentials to establish a remote session using Akeyless Secure Remote Access solutions to different endpoints while ensuring the privilege credentials are rotated periodically.

Linked Targets inherit credentials from a designated Parent Target, thus giving the hosts of the Linked Target the option to authenticate with any service tied to their parent target. Based on the Parent Target type, the Linked Target item can be used for the relevant Dynamic Secret type.

Working with Linked Targets in the CLI

These commands are unique to Linked Targets and do not apply to standard Targets.
Full parameters for these commands can be found in the reference.

Creating a Linked Target

To create a Linked Target, use the following command:

akeyless create-linked-target -n <linked target name> -p <parent target> -s <hosts>

Where:

  • -n, --name: A unique name for the Linked Target. The name can include the path to the virtual folder where you want to create the new Linked Target, using slash / separators. If the folder does not exist, it will be created together with the Linked Target.

  • -p, --parent-target-name: The name of an existing parent target from which to inherit credentials.

  • -s, --hosts: A comma-separated list of server hosts and server descriptions joined by a semicolon ';' (i.e. 'server-dev.com;My Dev server,server-prod.com;My Prod server description').

๐Ÿ‘

Tip

All Linked Target hosts will be added to the Secure Remote Acess hosts lists automatically

Updating a Linked Target

To update an existing linked target use the following command:

akeyless update-linked-target -n <linked target name> --new-name <new name>\
-p <parent target> -s <hosts>

Inserting new values in the hosts or parent target parameters will change their values, but the name must be changed via the --new-name parameter.

Working with Linked Targets in the Console

to create a linked target do as follows:

  1. Log in to the Akeyless Console, and go to Targets > New > Linked Target.

  2. Define a Name for the Linked Target, and specify the Location as a path to the virtual folder where you want to create the new Linked Target, using slash / separators. If the folder does not exist, it will be created together with the Linked Target.

  3. Fill in these parameters:

  • Description: an optional description of the item you are creating.

  • Parent Target: Select an existing target from which to inherit credentials.

  • Hosts: Select the + Add Host(s) button and insert host information. To add more than one host, select the + to the left of the host name in order to open another row. After finishing, select Confirm.

  1. Select Finish.

To change any information find the Linked target in your Targets tab and select edit.