1--- 2layout: docs 3page_title: Vault Agent Auto-Auth Cert Method 4description: Cert Method for Vault Agent Auto-Auth 5--- 6 7# Vault Agent Auto-Auth Cert Method 8 9The `cert` method uses the configured TLS certificates from the `vault` stanza of 10the agent configuration and takes an optional `name` parameter. There is no option 11to use certificates which differ from those used in the `vault` stanza. 12 13It is strongly advised to provide TLS settings in the configuration stanza 14within the auth method to avoid agent cache, if also enabled, from using the 15same TLS settings when proxying requests. If TLS settings are not present in the 16config stanza, Agent will fall back to using TLS settings from the [`vault` 17Stanza](/docs/agent#vault-stanza). 18 19## Configuration 20 21- `name` `(string: optional)` - The trusted certificate role which should be used 22 when authenticating with TLS. If a `name` is not specified, the auth method will 23 try to authenticate against [all trusted certificates](/docs/auth/cert#authentication). 24 25- `ca_cert` `(string: optional)` - Path on the local disk to a single 26 PEM-encoded CA certificate to verify the Vault server's SSL certificate. 27 28- `client_cert` `(string: optional)` - Path on the local disk to a single 29 PEM-encoded client certificate to use for cert auth method authentication. 30 31- `client_key` `(string: optional)` - Path on the local disk to a single 32 PEM-encoded private key matching the client certificate from client_cert. 33