Hashicorp Vault

Why Vault

Secret Management

What is a Secret?

Authentication

Authorization

username passwords

database credentials

API tokens

TLS certificates

Host certificates

Client Certificates

Confidential data

Credit card details

Passport details

Phone numbers

Govt Identity card details

State of secret Sprawl

Configs

VCS

Logs

Files

How Vault solves this?

Centralization of secrets

Access Control via ACLs

Audits

Encryption of Secrets

Dynamic secrets

Secrets with low TTL

Easy to rotate secrets

Ability to revoke secrets

Encryption as a service

High availability