Secrets Management

Introduction

Secrets for applications and systems need to be centralized and static IP-based solutions don't scale in dynamic environments with frequently changing applications and machines.

Vault enables teams to securely store and tightly control access to tokens, passwords, certificates, and encryption keys for protecting machines, applications, and sensitive data. In addition, Vault can dynamically generate time-limited secrets to access databases, cloud resources, etc.

Secrets engines are Vault components which store, generate or encrypt data. They are incredibly flexible and pluggable.

The Secrets Management track introduces secrets engines.

Learning Path

Based on your organization's needs, refer to some or all of the guides provided on this track to get you started.

Secret Storage

Dynamic Secrets

Key Management Interoperability Protocol (KMIP)

Custom Plugins