# Username/Password {% hint style="info" %} This step assumes you started the Vault server and signed in with the root token in the Web UI step. {% endhint %} ### Enable authentication 1. Select the **Access** view from the menu

This view is the index and displays all authentication methods, entities, groups, and leases. The token authentication method was enabled when Vault was initialized and cannot be disabled. 2. Select the **Enable new method** action from within the view.

This view displays all of the authentication methods that this version of Vault supports. 3. Choose the **Username & Password** method and select **Next**.

This view displays the path and the ability to configure the auth method. The path defaults to "userpass." {% hint style="warning" %} ***User lockout*** the User lockout feature is enabled by default for the `userpass`, `approle`, and `ldap` auth methods. {% endhint %} 4. Toggle **Method Options** to display the method options interface.

5. Check the **List method when unauthenticated** option. 6. Select **Enable Method**. The authentication method is created. The view displays its configuration page.

### Create credentials The User & Password authentication method, abbreviated as userpass, enables the creation of credentials for individual users. 1. Select the **View method** action from within the view.

This view displays the users created for this authentication methods. There are no users. 2. Select the **Create user** action from within the view. This view displays the ability to create a custom login for a user. 3. Enter `webapp` in the **Username** field. Enter `password` in the **Password** field.

4. Toggle **Tokens** to display the token interface.

5. Enter `webapp` in the **Generated Token's Policies**. Select **Add**.

{% hint style="warning" %} The policies added to this authentication method are not checked against available policies. {% endhint %} 6. Select **Save**. The authentication method for this user is created. ### Authenticate with credentials You are currently logged in with the root token. To login with these user credentials requires you to log out. 1. Open the **Profile** submenu. Select **Sign Out**.

You are now logged out of the server. 2. Choose **userpass** from the **Method** list.

The view changes to show a username and password login interface. 3. Enter `webapp` in the **Username** field. Enter `password` in the **Password** field. Select **Sign in**. You are now logged through the userpass authentication method. The capabilities of this user are limited to the policies assigned to this user's auth method. --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.enclaive.cloud/vault/tutorials/ui/authentication/username-password.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.