» Command: acl token create

The acl token create command is used to create new ACL tokens.

» Usage

nomad acl token create [options]

The acl token create command requires no arguments.

» General Options

  • -address=<addr>: The address of the Nomad server. Overrides the NOMAD_ADDR environment variable if set. Defaults to http://127.0.0.1:4646.

  • -region=<region>: The region of the Nomad server to forward commands to. Overrides the NOMAD_REGION environment variable if set. Defaults to the Agent's local region.

  • -no-color: Disables colored command output.

  • -ca-cert=<path>: Path to a PEM encoded CA cert file to use to verify the Nomad server SSL certificate. Overrides the NOMAD_CACERT environment variable if set.

  • -ca-path=<path>: Path to a directory of PEM encoded CA cert files to verify the Nomad server SSL certificate. If both -ca-cert and -ca-path are specified, -ca-cert is used. Overrides the NOMAD_CAPATH environment variable if set.

  • -client-cert=<path>: Path to a PEM encoded client certificate for TLS authentication to the Nomad server. Must also specify -client-key. Overrides the NOMAD_CLIENT_CERT environment variable if set.

  • -client-key=<path>: Path to an unencrypted PEM encoded private key matching the client certificate from -client-cert. Overrides the NOMAD_CLIENT_KEY environment variable if set.

  • -tls-skip-verify: Do not verify TLS certificate. This is highly not recommended. Verification will also be skipped if NOMAD_SKIP_VERIFY is set.

  • -token: The SecretID of an ACL token to use to authenticate API requests with. Overrides the NOMAD_TOKEN environment variable if set.

» Create Options

  • -name: Sets the human readable name for the ACL token.

  • -type: Sets the type of token. Must be one of "client" (default), or "management".

  • -global: Toggles the global mode of the token. Global tokens are replicated to all regions. Defaults false.

  • -policy: Specifies a policy to associate with the token. Can be specified multiple times, but only with client type tokens.

» Examples

Create a new ACL token:

$ nomad acl token create -name="my token" -policy=foo -policy=bar
Accessor ID  = d532c40a-30f1-695c-19e5-c35b882b0efd
Secret ID    = 85310d07-9afa-ef53-0933-0c043cd673c7
Name         = my token
Type         = client
Global       = false
Policies     = [foo bar]
Create Time  = 2017-09-15 05:04:41.814954949 +0000 UTC
Create Index = 8
Modify Index = 8