Store sensitive variable values in Hashicorp Vault
Integrate Octopus Deploy with HashiCorp Vault secrets management system
Andry
shared this idea
-
Elliot Pryde
commented
+1 for Azure Key Vault integration
-
Matt B
commented
+1 for AWS SecretsManager
-
Dan Greene
commented
+1 for AWS SecretsManager
-
Eric S
commented
+1 for AWS SecretsManager
-
Keith D
commented
Would be great to see some integration with external secrets management, we're about to start using Thycotic
-
Rob
commented
+1 for Azure Key Vault integration
-
Raf
commented
would be great to see azure key vault integration
-
Andris
commented
+1 for Azure Key Vault integration
-
Arjan van Rijn
commented
Same goes for Azure Key Vault
-
Darren Aitcheson
commented
Second this - integration with Vault (also the Hashicorp Enterprise version) and also CyberArk would be very useful.
-
Eric Loveland
commented
This was also suggested here: https://github.com/OctopusDeploy/Issues/issues/3093#issuecomment-275559590
I would like to see this implemented as an extensibility point however. Other secrets management systems such as Thycotic Secret Server, ManageEngine Password Manager, Square KeyWhiz and any variety of on-prem and cloud HSMszure are in use throughout our industry.
Initially I thought that this could be implemented via an Octostache extensibility point (a plugin that helps it fetch sensitive vars) but I realized this would not be compatible with offline deployments.