(command-juju-add-secret-backend)=
# `juju add-secret-backend`
> See also: [secret-backends](#secret-backends), [remove-secret-backend](#remove-secret-backend), [show-secret-backend](#show-secret-backend), [update-secret-backend](#update-secret-backend)

## Summary
Add a new secret backend to the controller.

## Usage
```juju add-secret-backend [options] <backend-name> <backend-type>```

### Options
| Flag | Default | Usage |
| --- | --- | --- |
| `-c`, `--controller` |  | Controller to operate in |
| `--config` |  | path to yaml-formatted configuration file |
| `--import-id` |  | add the backend with the specified id |

## Examples

    juju add-secret-backend myvault vault --config /path/to/cfg.yaml
    juju add-secret-backend myvault vault token-rotate=10m --config /path/to/cfg.yaml
    juju add-secret-backend myvault vault endpoint=https://vault.io:8200 token=s.1wshwhw


## Details

Adds a new secret backend for storing secret content.

You must specify a name for the backend and its type,
followed by any necessary backend specific config values.
Config may be specified as key values ot read from a file.
Any key values override file content if both are specified.

To rotate the backend access credential/token (if specified), use
the "token-rotate" config and supply a duration.