What is hashicorp
vault ?
Manages (generates,stores,revokes) static and dynamic
secrets
Management of leasing and revocation of the secrets.
Vault handles both encryption and decryption details.
End-user expects to handle the secret,encrypt the secret and
store the secret.
Vault does provide the
data encryption service from the stored service.
Vault provides a robust auditing capability.
“every request and response along with the user identity is logged”
Essentially every event including the error is logged.
PCI and other compliance environments.
Its critical to know,who accessed what secrets and when.
The vault framework is very extensible,its support the notion
of
The Pluggable storage and secret backend architecture.
“which helps
vault to store the secrets at the variety of mediums”
Vault integrates with the various third party integrated-systems
for generating the secrets,such as the database,amazon web services or LDAP.
“authorization is handled by a declarative framework,means access
to the vault should be explicitly defined”.
“we have to know the vault policies”.
Lastly,vault provides the full featured REST API (FULL http API).
we can setup the vault cluster using the below URL:
