HashiCorp Cloud Platform (HCP) Vault creates a Vault Enterprise cluster with an
admin namespace. A Vault namespace provides the ability to scale to meet your
organizational needs. In this tutorial, you will explore the creation of
namespaces and learn how to navigate between them.
NOTE: This step assumes that you created and connected to the HCP Vault cluster in the Create a Vault Cluster on HashiCorp Cloud Platform (HCP) step.
»Characteristics of Vault namespaces
A Vault namespace enables teams, organizations, or applications a dedicated, isolated environment. Each namespace has its own:
- Policies
- Auth methods
- Secrets engines
- Tokens
- Identity entities and groups
Tokens are locked to a namespace or child-namespaces. Identity groups can pull in entities and groups from other namespaces.
»Create namespaces
A Vault namespace may define their own namespaces. These child-namespaces enable further isolated environments under the parent namespace.
In the Vault UI, select Access from the menu.
Select Namespaces and then click the Create namespace action.
Enter
educationin the Path field.
Click Save.
The
educationnamespace is created as a child-namespace of theadminnamespace. This relationship is represented as the pathadmin/education/.Click the admin namespace from the menu.
The namespace selector displays the child-namespaces of the current namespace.
Select the education namespace.
The current namespace changes to the
admin/education/.Navigate to Access > Namespaces and click the Create namespace action.
Enter
trainingin the Path field.
Click Save.
The
trainingnamespace is created as a child-namespace of theadmin/education/namespace. This relationship is represented as the pathadmin/education/training/.Use the namespace selector to navigate to the training namespace and then to the admin namespace.
»Next steps
You created and navigated through Vault Enterprise namespaces. To gain a greater understanding of namespaces complete the Secure Multi-Tenancy with Namespaces tutorial.
Now you understand the fundamentals of Vault Enterprises namespaces. You are ready to configure HCP Vault to complete common Vault setup tasks in the next tutorial.