luxolus/open-vault
2
0
Fork 0
Code Issues 1 Pull requests Releases Activity
open-vault/website/pages/guides/secret-mgmt/index.mdx
Jeff Escalante df34412570 New Website! (#8154) 
* new documentation website

* ci job adjustment

* update to latest version on downloads page

* remove transition-period scripts

* add netlify toml file

* fix docs patch

* fix ci config?

* revert go.mod changes

* a couple last markdown formatting fixes
2020-01-17 16:18:09 -08:00

51 lines
2.3 KiB
Plaintext
Raw Blame History

---
layout: guides
page_title: Secrets Management - Guides
sidebar_title: Secrets Management
description: |-
A very common use case of Vault is to manage your organization's secrets from
storing credentials and API keys to encrypting passwords for user signups.
Vault is meant to be a solution for all secret management needs.
---
# Secrets Management
Vault is a tool for securely accessing secrets. A secret is anything that you
want to tightly control access to, such as API keys, passwords, certificates,
and more. Vault provides a unified interface to any secret while providing
tight access control and recording a detailed audit log.
Secrets Management guides demonstrate features in Vault to securely store your
secrets.
- [Static Secrets](/guides/secret-mgmt/static-secrets.html) guide walks you
through the steps to write secrets in Vault, and control who can access them.
- [Versioned KV Secret Engine](/guides/secret-mgmt/versioned-kv.html) guide
demonstrates the secret versioning capabilities provided by KV Secret Engine v2.
- [Secret as a Service: Dynamic Secrets](/guides/secret-mgmt/dynamic-secrets.html)
guide demonstrates the Vault feature to generate database credentials
on-demand so that each application or system can obtain its own credentials,
and its permissions can be tightly controlled.
- [Database Root Credential Rotation](/guides/secret-mgmt/db-root-rotation.html)
guide walks you through the steps to enable the rotation of the database root
credentials for those managed by Vault.
- [Cubbyhole Response Wrapping](/guides/secret-mgmt/cubbyhole.html) guide
demonstrates a secure method to distribute secrets by wrapping them where only
the expecting client can unwrap.
- [One-Time SSH Password](/guides/secret-mgmt/ssh-otp.html) guide demonstrates
the use of SSH secrets engine to generate a one-time password (OTP) every time a
client wants to SSH into a remote host.
- [Build Your Own Certificate Authority](/guides/secret-mgmt/pki-engine.html)
guide walks you through the use of the PKI secrets engine to generate dynamic
X.509 certificates.
- [Direct Application Integration](/guides/secret-mgmt/app-integration.html)
guide demonstrates the usage of _Consul Template_ and _Envconsul_ tool to
retrieve secrets from Vault with no or minimum code change to your applications.
Reference in a new issue View git blame Copy permalink