Hashicorp Vault
Why Vault
Secret Management
What is a Secret?
Authentication
Authorization
username passwords
database credentials
API tokens
TLS certificates
Host certificates
Client Certificates
Confidential data
Credit card details
Passport details
Phone numbers
Govt Identity card details
State of secret Sprawl
Configs
VCS
Logs
Files
How Vault solves this?
Centralization of secrets
Access Control via ACLs
Audits
Encryption of Secrets
Dynamic secrets
Secrets with low TTL
Easy to rotate secrets
Ability to revoke secrets
Encryption as a service
High availability