How to Add a Secret Provider

You have the option to integrate HashiCorp Cloud Vault (opens in a new tab), Vault Enterprise Server (opens in a new tab), or a Local Vault server (opens in a new tab) as your secret provider.

Setting Up Vault Server

To configure a Vault server secret provider, you can opt for either Token or AppRole authentication.

1. Go to the application settings located at the bottom of the left sidebar and navigate to the Secrets section.

2. Click on the + Add Secret Provider button.

3. Choose Vault Server as the provider type and select your preferred authentication method.

4. Enter http://localhost:8200 if using a local server, or the URL of the hosted server (e.g., https://vault.example.com).

5. Provide the necessary Token (opens in a new tab) or AppRole (opens in a new tab) credentials.

6. Click on Add to save the secret provider.

Setting up Vault Cloud

To set up a Vault Cloud secret provider, follow these steps:

1. Go to the application settings located at the bottom of the left sidebar and navigate to the Secrets section.

2. Click on the + Add Secret Provider button.

3. Select Vault Cloud as the provider type.

4. Maintain the default settings for Token Endpoint and Secrets Endpoint, or modify them if necessary.

5. Provide the required Client Credentials (opens in a new tab).

6. Add one or more Projects (Apps) to the secret provider.

7. Click on Add to save the secret provider.