Secret Variables blank

PorreKaj · February 21, 2023, 11:15am

I have 2 PSU instances running using gMSA (non local admin)

on both I’m unable to retrieve the content of secret variables

I create a variable in the Admin panel, which adds:

New-PSUVariable -Name "testsecret" -Vault "BuiltInLocalVault" -Type "PSCredential"

To Variables.ps1

but $TestSecret returns ""
and Get-PSUVariable -Name testsecret -Integrated returns

[{"Id":7,"Name":"testsecret","Value":"","UserName":null,"Password":null,"Secret":false,"Vault":"BuiltInLocalVault","Type":"PSCredential","CreatedTime":"0001-01-01T00:00:00","UpdatedTime":"0001-01-01T00:00:00","Description":null,"MissingSecret":false,"DisableRunAsSupport":false,"DeleteSecret":false,"ReadOnly":false,"DisplayValue":""}]

I can retrieve the contents of normal variables just fine.

Edit

Oh well, Editing my service to run as System did not change the behaviour.

PorreKaj · February 21, 2023, 12:17pm

same goes when using database

[{“Id”:7,“Name”:“SecretTest2”,“Value”:“”,“UserName”:null,“Password”:null,“Secret”:false,“Vault”:“Database”,“Type”:“PSCredential”,“CreatedTime”:“0001-01-01T00:00:00”,“UpdatedTime”:“0001-01-01T00:00:00”,“Description”:null,“MissingSecret”:false,“DisableRunAsSupport”:false,“DeleteSecret”:false,“ReadOnly”:false,“DisplayValue”:“”}]

adam · February 21, 2023, 1:34pm

Secrets aren’t returned by the API or as regular variables. You need to use the secret scope.

$Secret:testsecret

Topic		Replies	Views
Import-PSUSecret? PowerShell Universal	11	49	December 10, 2024
Unable to Access v5.0.13 DB Secret	0	15	December 5, 2024
Accessing Secret variable from API Universal API	2	48	November 20, 2024
Authentication.ps1 not getting $secret:variable values? PowerShell Universal	1	395	November 29, 2022
PSU 1.4.1 - PSCredentials not available in scripts	4	593	October 6, 2020

Secret Variables blank

Related topics