Skip to main content

Use HashiCorp Vault C# Client with .NET Core

New step-by-step tutorials to demonstrate the use of Vault C# client library to leverage HashiCorp Vault in your .NET applications.

Dec 04 2020Yoko Hyakuna

When you have an application that reads data from a database, you can leverage Vault's database secrets engine to dynamically generate a short-lived username and password to secure the database access.

Scenario diagram

This sounds easy, but to accomplish this, your application must:

  1. Authenticate with Vault and acquire a token
  2. Use the token to request database credentials from Vault
  3. Connect to the target database using the credentials managed by Vault

To demonstrate the end-to-end workflow, we introduced the Using HashiCorp Vault C# Client with .NET Core tutorial. You will see how an ASP.NET Core application uses the Vault Sharp client library to authenticate with Vault and then acquire database credentials to read data from a database.

At the end of this tutorial, it will present another challenge. By keeping the database credentials short-lived, you secure the database connection. However, you now must build additional logic into your application to watch for changes in dynamic secrets and reload. To address this, the Using HashiCorp Vault Agent with .NET Core tutorial demonstrates the use of Vault Agent. 

If you are running .NET applications, visit the Vault Learn page to find these two new tutorials. 

Vault Learn

Sign up for the latest HashiCorp news

By submitting this form, you acknowledge and agree that HashiCorp will process your personal information in accordance with the Privacy Policy.

More blog posts like this one

The 18-point secrets management checklist
May 13 2025 | Products & Technology
The 18-point secrets management checklist

How you handle secrets should evolve as your cloud journey progresses. Follow this best-practices checklist as a guide.

Vulnerability tools aren’t enough to resolve exposed credentials
May 07 2025 | Products & Technology
Vulnerability tools aren’t enough to resolve exposed credentials

Relying on vulnerability tools is insufficient for protecting against credential leaks; specialized solutions like HCP Vault Radar are necessary to effectively detect and prevent unauthorized access.

Improve secret scanning efficiency in HCP Vault Radar
May 01 2025 | Products & Technology
Improve secret scanning efficiency in HCP Vault Radar

Learn how HCP Vault Radar uses tuning detection with regex, ignore rules, and exclusion rules to detect leaks and unmanaged secrets.