Centrally store, access, and distribute dynamic secrets such as tokens, passwords, certificates, and encryption keys
Advanced Data Protection with Vault
Secure, store and tightly control access to tokens, passwords, certificates, encryption keys for protecting secrets and other sensitive data using a UI, CLI, or HTTP API.
Datacenters with inherently high-trust networks with clear network perimeters.
Multiple clouds and private datacenters without a clear network perimeter.
Vault tightly controls access to secrets and encryption keys by authenticating against trusted sources of identity such as Active Directory, LDAP, Kubernetes, CloudFoundry, and cloud platforms. Vault enables fine grained authorization of which users and applications are permitted access to secrets and keys.
$ curl \ --header "X-Vault-Token: ..." \ --request POST \ --data @payload.json \ https://127.0.0.1:8200/v1/secret/config
Enable automation and CI/CD use cases while enabling policy to codify, protect, and govern access to secrets.