Introducing

Advanced Data Protection with Vault

Manage Secrets and Protect Sensitive Data

Secure, store and tightly control access to tokens, passwords, certificates, encryption keys for protecting secrets and other sensitive data using a UI, CLI, or HTTP API.

UI
CLI

The shift to managing secrets and protecting data in dynamic infrastructure

Static Infrastructure

Datacenters with inherently high-trust networks with clear network perimeters.

»Traditional Approach

  • High trust networks
  • A clear network perimeter
  • Security enforced by IP Address

Dynamic Infrastructure

Multiple clouds and private datacenters without a clear network perimeter.

»Vault Approach

  • Low-trust networks in public clouds
  • Unknown network perimeter across clouds
  • Security enforced by Identity

Vault's Use Cases

Secrets Management

Centrally store, access, and distribute dynamic secrets such as tokens, passwords, certificates, and encryption keys

Learn More

Data Protection

Keep application data secure with centralized key management and simple APIs for data encryption

Learn More
How Vault Works

How Vault Works

Vault tightly controls access to secrets and encryption keys by authenticating against trusted sources of identity such as Active Directory, LDAP, Kubernetes, CloudFoundry, and cloud platforms. Vault enables fine grained authorization of which users and applications are permitted access to secrets and keys.

Watch video

Vault Case Study

Dan_McTeer_Adobe_HashiConf2017

Using Vault to securely handle 100 trillion transactions

Securing transactions used by millions of people across the world is not a small task. Read how HashiCorp Vault helps secure sensitive information at dramatic scale.

Read Case Study

Companies that trust Vault

  • Adobe Logo
  • Barclays Logo
  • GM Cruise Logo
  • Hulu Logo
  • Vodafone Logo
  • F5 Logo
  • Athena Health Logo
  • Shopify Logo
  • Equifax Logo
  • SAP Ariba Logo
  • AstraZeneca Logo
  • Tractor Supply Co Logo

Vault Principles

$ curl \
    --header "X-Vault-Token: ..." \
    --request POST \
    --data @payload.json \

https://127.0.0.1:8200/v1/secret/config

API Driven

Enable automation and CI/CD use cases while enabling policy to codify, protect, and govern access to secrets.

aws
microsoft-azure
google
alibaba-cloud

Secure with any Identity

Leverage any trusted identity provider, such as cloud IAM platforms, Kubernetes, Active Directory, to authenticate into Vault. Identity is scale independent, unlike IP addresses, which require complex firewall rules and frequent updates.

oracle
aws
microsoft-azure

Extend and Integrate

Request secrets for any system through one consistent, audited, and secured workflow. Vault supports public clouds and private datacenters, and a broad range of endpoint systems including databases, cloud platforms, messaging queues, SSH, and more.

Vault Open Source and Enterprise Features

Learn more about secrets management and data protection features with Vault Open Source and collaboration, governance, and multi-datacenter features with Vault Enterprise.

View FeaturesContact Sales

Related Resources

Slide 1 of 20
Show More