Advance Settings: Key Vault Store
Last updated
Last updated
Connecting your own key vault enhances security by providing centralized, encrypted storage for sensitive data. It simplifies compliance with regulatory requirements through robust access control and audit capabilities.
Spydra offers a Hashicorp Vault for each organization to store node-related keys, credentials, and certificates. Users can access "Advanced Settings" in the hosting tab when creating a network. Users can connect managed key vault services like Azure Key Vault or AWS Key Manager to store keys and certificates during network setup.
However, user's will not be able to switch back to Spydra's default Hashicorp vault once your key vault is connected.
Uncheck the 'Default' Spydra managed Hashicorp vault option.
Choose Azure Key Vault as your 'External Vault Source'.
When selecting the source, if you've previously connected an Azure Key Vault, it will appear as an option. Otherwise, you'll need to connect a new Azure Key Vault
To proceed and connect your Azure Key Vault, ensure the vault details are correct:
Vault Name: Use a descriptive name for easy identification. Example- Blockchain Azure keys.
Application ID
Tenant ID
Application Secret
Key Vault URL
Find details in your Azure Key Vault account by referring to Azure's documentation.
Uncheck the 'Default' Spydra managed Hashicorp vault option.
Choose AWS Key Manager as your 'External Vault Source'.
When selecting the source, if you've previously connected an AWS Key Manager, it will appear as an option. Otherwise, you'll need to connect a new AWS Key Manager.
To proceed and connect your AWS Key Manager, ensure the vault details are correct:
Vault Name: Use a descriptive name for easy identification. Example- Blockchain Azure keys.
AWS Access Key
AWS secret key
Region
Find details in your AWS Key Manager account by referring to AWS Key Manager's documentation.
