Advance Settings: Key Vault Store

Connecting your own key vault enhances security by providing centralized, encrypted storage for sensitive data. It simplifies compliance with regulatory requirements through robust access control and audit capabilities.

Spydra offers a Hashicorp Vault for each organization to store node-related keys, credentials, and certificates. Users can access "Advanced Settings" in the hosting tab when creating a network. Users can connect managed key vault services like Azure Key Vault or AWS Key Manager to store keys and certificates during network setup.

However, user's will not be able to switch back to Spydra's default Hashicorp vault once your key vault is connected.

Connecting Azure Key Vault

• Uncheck the 'Default' Spydra managed Hashicorp vault option.

• Choose Azure Key Vault as your 'External Vault Source'.

When selecting the source, if you've previously connected an Azure Key Vault, it will appear as an option. Otherwise, you'll need to connect a new Azure Key Vault

To proceed and connect your Azure Key Vault, ensure the vault details are correct:

1. Vault Name: Use a descriptive name for easy identification. Example- Blockchain Azure keys.

2. Application ID

3. Tenant ID

4. Application Secret

5. Key Vault URL

Connecting AWS Key Manager

• Uncheck the 'Default' Spydra managed Hashicorp vault option.

• Choose AWS Key Manager as your 'External Vault Source'.

When selecting the source, if you've previously connected an AWS Key Manager, it will appear as an option. Otherwise, you'll need to connect a new AWS Key Manager.

To proceed and connect your AWS Key Manager, ensure the vault details are correct:

1. Vault Name: Use a descriptive name for easy identification. Example- Blockchain Azure keys.

2. AWS Access Key

3. AWS secret key

4. Region