Wunderbread
Reputation: 1070
Separate HashiCorp Vault for each environment?
Should I consider a HashiCorp Vault per environment? I feel like we shouldn't be combining development, staging, and production secrets within one environment. Is this something that you're doing at your organization or are you approaching this differently based on cost restrictions, etc.
Context: https://www.vaultproject.io/
Upvotes: 1
Views: 1081
Answers (1)
Kamol Hasan
Reputation: 13546
Vault Namespace is designed to handle such scenarios.
Namespaces are isolated environments that functionally exist as "Vaults within a Vault." They have separate login paths and support creating and managing data isolated to their namespace.
N.B.: This feature is available in all versions of Vault Enterprise.
Upvotes: 2
Related Questions
- Can I authenticate users from multiple Google cloud projects Vault's auth/gcp
- Using multiple types of Vault secrets in one Spring boot application
- How to securely export and import data from different vault instances?
- Provider Configuration for vault in terraform
- Using Hashicorp Vault and Spring Cloud in different environments
- Can hashicorp vault be embedded within a Java Web application
- vault for kubernetes (vault-operator)
- how ot map multiple Hashicorp Vault policies to a GitHub team?
- How can I use Hashicorp Vault to manage my application secrets?
- How to integrate Hashi corp vault on two instances which are in two different availability zones and make them to use the same backend?