mirror of
https://github.com/optim-enterprises-bv/vault.git
synced 2025-10-29 09:42:25 +00:00
3191 lines
81 KiB
JSON
3191 lines
81 KiB
JSON
[
|
|
{
|
|
"title": "What is Vault?",
|
|
"path": "what-is-vault"
|
|
},
|
|
{
|
|
"title": "Use Cases",
|
|
"path": "use-cases"
|
|
},
|
|
{
|
|
"title": "Get Started",
|
|
"routes": [
|
|
{
|
|
"title": "Developer quick start",
|
|
"path": "get-started/developer-qs"
|
|
},
|
|
{
|
|
"title": "Operations quick start",
|
|
"path": "get-started/operations-qs"
|
|
},
|
|
{
|
|
"title": "Vault foundations tutorials",
|
|
"href": "/vault/tutorials/get-started"
|
|
},
|
|
{
|
|
"title": "HCP Vault Dedicated tutorials",
|
|
"href": "/vault/tutorials/get-started-hcp-vault-dedicated"
|
|
}
|
|
]
|
|
},
|
|
|
|
{
|
|
"divider": true
|
|
},
|
|
{
|
|
"title": "Browser Support",
|
|
"path": "browser-support"
|
|
},
|
|
|
|
{
|
|
"title": "Install Vault",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "install"
|
|
},
|
|
{
|
|
"title": "Install manually",
|
|
"path": "install/install-binary"
|
|
},
|
|
{
|
|
"title": "Build from code",
|
|
"path": "install/build-from-code"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "Run Vault as a service",
|
|
"path": "run-as-service"
|
|
},
|
|
{
|
|
"title": "Internals",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "internals"
|
|
},
|
|
{
|
|
"title": "Architecture",
|
|
"path": "internals/architecture"
|
|
},
|
|
{
|
|
"title": "High Availability",
|
|
"path": "internals/high-availability"
|
|
},
|
|
{
|
|
"title": "Integrated Storage",
|
|
"path": "internals/integrated-storage"
|
|
},
|
|
{
|
|
"title": "Recommended patterns",
|
|
"path": "internals/recommended-patterns"
|
|
},
|
|
{
|
|
"title": "Security Model",
|
|
"path": "internals/security"
|
|
},
|
|
{
|
|
"title": "Telemetry",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "internals/telemetry"
|
|
},
|
|
{
|
|
"title": "Enable telemetry gathering",
|
|
"path": "internals/telemetry/enable-telemetry"
|
|
},
|
|
{
|
|
"title": "Key metrics",
|
|
"path": "internals/telemetry/key-metrics"
|
|
},
|
|
{
|
|
"title": "Metric reference",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "internals/telemetry/metrics"
|
|
},
|
|
{
|
|
"title": "Core system metrics",
|
|
"path": "internals/telemetry/metrics/core-system"
|
|
},
|
|
{
|
|
"title": "Audit log metrics",
|
|
"path": "internals/telemetry/metrics/audit"
|
|
},
|
|
{
|
|
"title": "Authentication metrics",
|
|
"path": "internals/telemetry/metrics/authn"
|
|
},
|
|
{
|
|
"title": "Auto-snapshot metrics",
|
|
"path": "internals/telemetry/metrics/autosnap"
|
|
},
|
|
{
|
|
"title": "Availability metrics",
|
|
"path": "internals/telemetry/metrics/availability"
|
|
},
|
|
{
|
|
"title": "Database metrics",
|
|
"path": "internals/telemetry/metrics/database"
|
|
},
|
|
{
|
|
"title": "Policy metrics",
|
|
"path": "internals/telemetry/metrics/policy"
|
|
},
|
|
{
|
|
"title": "Raft metrics",
|
|
"path": "internals/telemetry/metrics/raft"
|
|
},
|
|
{
|
|
"title": "Secrets Sync metrics",
|
|
"path": "internals/telemetry/metrics/secrets-sync"
|
|
},
|
|
{
|
|
"title": "Secrets metrics",
|
|
"path": "internals/telemetry/metrics/secrets"
|
|
},
|
|
{
|
|
"title": "Storage plugin metrics",
|
|
"path": "internals/telemetry/metrics/storage"
|
|
},
|
|
{
|
|
"title": "Full metrics list",
|
|
"path": "internals/telemetry/metrics/all"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
|
|
{
|
|
"title": "Token Authentication",
|
|
"path": "internals/token"
|
|
},
|
|
{
|
|
"title": "Key Rotation",
|
|
"path": "internals/rotation"
|
|
},
|
|
{
|
|
"title": "Replication",
|
|
"path": "internals/replication"
|
|
},
|
|
{
|
|
"title": "Limits and Maximums",
|
|
"path": "internals/limits"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "Concepts",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "concepts"
|
|
},
|
|
{
|
|
"title": "'Dev' Server",
|
|
"path": "concepts/dev-server"
|
|
},
|
|
{
|
|
"title": "Seal/Unseal",
|
|
"path": "concepts/seal"
|
|
},
|
|
{
|
|
"title": "Namespace API Lock",
|
|
"path": "concepts/namespace-api-lock"
|
|
},
|
|
{
|
|
"title": "Lease, Renew, and Revoke",
|
|
"path": "concepts/lease"
|
|
},
|
|
{
|
|
"title": "Authentication",
|
|
"path": "concepts/auth"
|
|
},
|
|
{
|
|
"title": "Tokens",
|
|
"path": "concepts/tokens"
|
|
},
|
|
{
|
|
"title": "Identity",
|
|
"path": "concepts/identity"
|
|
},
|
|
{
|
|
"title": "OIDC Provider",
|
|
"path": "concepts/oidc-provider"
|
|
},
|
|
{
|
|
"title": "Response Wrapping",
|
|
"path": "concepts/response-wrapping"
|
|
},
|
|
{
|
|
"title": "Policies",
|
|
"path": "concepts/policies"
|
|
},
|
|
{
|
|
"title": "Password Policies",
|
|
"path": "concepts/password-policies"
|
|
},
|
|
{
|
|
"title": "Username Templating",
|
|
"path": "concepts/username-templating"
|
|
},
|
|
{
|
|
"title": "High Availability",
|
|
"path": "concepts/ha"
|
|
},
|
|
{
|
|
"title": "Production hardening",
|
|
"path": "concepts/production-hardening"
|
|
},
|
|
{
|
|
"title": "Storage",
|
|
"path": "concepts/storage"
|
|
},
|
|
{
|
|
"title": "Tune server performance",
|
|
"path": "concepts/tune-server-performance"
|
|
},
|
|
{
|
|
"title": "Cloud access management",
|
|
"path": "concepts/cloud-access-management"
|
|
},
|
|
{
|
|
"title": "Integrated Storage",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "concepts/integrated-storage"
|
|
},
|
|
{
|
|
"title": "Autopilot",
|
|
"path": "concepts/integrated-storage/autopilot"
|
|
},
|
|
{
|
|
"title": "Migration checklist",
|
|
"path": "concepts/integrated-storage/migration-checklist"
|
|
},
|
|
{
|
|
"title": "Migrate Consul storage",
|
|
"path": "concepts/integrated-storage/migrate-consul-storage"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "PGP, GnuPG, and Keybase",
|
|
"path": "concepts/pgp-gpg-keybase"
|
|
},
|
|
{
|
|
"title": "Recovery Mode",
|
|
"path": "concepts/recovery-mode"
|
|
},
|
|
{
|
|
"title": "Resource Quotas",
|
|
"path": "concepts/resource-quotas"
|
|
},
|
|
{
|
|
"title": "Billing Start Date",
|
|
"path": "concepts/billing-start-date"
|
|
},
|
|
{
|
|
"title": "Client count",
|
|
"routes": [
|
|
{
|
|
"title": "Clients and entities",
|
|
"path": "concepts/client-count"
|
|
},
|
|
{
|
|
"title": "Client count calculation",
|
|
"path": "concepts/client-count/counting"
|
|
},
|
|
{
|
|
"title": "Usage metrics",
|
|
"path": "concepts/client-count/usage-metrics"
|
|
},
|
|
{
|
|
"title": "FAQ",
|
|
"path": "concepts/client-count/faq"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "Transform",
|
|
"path": "concepts/transform"
|
|
},
|
|
{
|
|
"title": "Mount Migration",
|
|
"path": "concepts/mount-migration"
|
|
},
|
|
{
|
|
"title": "Duration String Format",
|
|
"path": "concepts/duration-format"
|
|
},
|
|
{
|
|
"title": "User lockout",
|
|
"path": "concepts/user-lockout"
|
|
},
|
|
{
|
|
"title": "Events",
|
|
"path": "concepts/events",
|
|
"badge": {
|
|
"text": "ENT",
|
|
"type": "outlined",
|
|
"color": "neutral"
|
|
}
|
|
},
|
|
{
|
|
"title": "Filtering",
|
|
"path": "concepts/filtering",
|
|
"badge": {
|
|
"text": "ENT",
|
|
"type": "outlined",
|
|
"color": "neutral"
|
|
}
|
|
},
|
|
{
|
|
"title": "Adaptive overload protection",
|
|
"badge": {
|
|
"text": "ENT",
|
|
"type": "outlined",
|
|
"color": "neutral"
|
|
},
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "concepts/adaptive-overload-protection"
|
|
},
|
|
{
|
|
"title": "Vault server temporarily overloaded",
|
|
"path": "concepts/adaptive-overload-protection/vault-server-temporarily-overloaded"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "Configuration",
|
|
"routes": [
|
|
{
|
|
"title": "Parameter overview ",
|
|
"path": "configuration"
|
|
},
|
|
{
|
|
"title": "GUI configuration",
|
|
"path": "configuration/ui"
|
|
},
|
|
{
|
|
"title": "Programmatic best practices",
|
|
"path": "configuration/programmatic-best-practices"
|
|
},
|
|
{
|
|
"title": "Manage resources programmatically",
|
|
"path": "configuration/programmatic-management"
|
|
},
|
|
{
|
|
"title": "Prevent lease explosions",
|
|
"path": "configuration/prevent-lease-explosions"
|
|
},
|
|
{
|
|
"title": "Create a lease count quota",
|
|
"path": "configuration/create-lease-count-quota"
|
|
},
|
|
{
|
|
"title": "Configure completed request logging",
|
|
"path": "configuration/log-requests-level"
|
|
},
|
|
{
|
|
"title": "Configure entropy augmentation",
|
|
"badge": {
|
|
"text": "ENT",
|
|
"type": "outlined",
|
|
"color": "neutral"
|
|
},
|
|
"path": "configuration/entropy-augmentation"
|
|
},
|
|
|
|
{ "heading": "Configuration stanzas" },
|
|
|
|
{
|
|
"title": "<code>adaptive_overload_protection</code>",
|
|
"badge": {
|
|
"text": "ENT",
|
|
"type": "outlined",
|
|
"color": "neutral"
|
|
},
|
|
"path": "configuration/adaptive-overload-protection"
|
|
},
|
|
{
|
|
"title": "<code>kms_library</code>",
|
|
"badge": {
|
|
"text": "ENT",
|
|
"type": "outlined",
|
|
"color": "neutral"
|
|
},
|
|
"path": "configuration/kms-library"
|
|
},
|
|
{
|
|
"title": "<code>listener</code>",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "configuration/listener"
|
|
},
|
|
{
|
|
"title": "TCP listener configuration",
|
|
"routes": [
|
|
{
|
|
"title": "Basic configuration",
|
|
"path": "configuration/listener/tcp"
|
|
},
|
|
{
|
|
"title": "Configure TLS",
|
|
"path": "configuration/listener/tcp/tcp-tls"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "Unix listener configuration",
|
|
"path": "configuration/listener/unix"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "<code>replication</code>",
|
|
"badge": {
|
|
"text": "ENT",
|
|
"type": "outlined",
|
|
"color": "neutral"
|
|
},
|
|
"path": "configuration/replication"
|
|
},
|
|
{
|
|
"title": "<code>reporting</code>",
|
|
"badge": {
|
|
"text": "ENT",
|
|
"type": "outlined",
|
|
"color": "neutral"
|
|
},
|
|
"path": "configuration/reporting"
|
|
},
|
|
{
|
|
"title": "<code>seal</code>",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "configuration/seal"
|
|
},
|
|
{
|
|
"title": "Sealing best practices",
|
|
"path": "configuration/seal/seal-best-practices"
|
|
},
|
|
{
|
|
"title": "Configure HA for seals",
|
|
"badge": {
|
|
"text": "ENT",
|
|
"type": "outlined",
|
|
"color": "neutral"
|
|
},
|
|
"path": "configuration/seal/seal-ha"
|
|
},
|
|
{ "heading": "Seal wrapper options" },
|
|
{
|
|
"title": "AliCloud KMS",
|
|
"path": "configuration/seal/alicloudkms"
|
|
},
|
|
{
|
|
"title": "AWS KMS",
|
|
"path": "configuration/seal/awskms"
|
|
},
|
|
{
|
|
"title": "Azure Key Vault",
|
|
"path": "configuration/seal/azurekeyvault"
|
|
},
|
|
{
|
|
"title": "GCP Cloud KMS",
|
|
"path": "configuration/seal/gcpckms"
|
|
},
|
|
{
|
|
"title": "OCI KMS",
|
|
"path": "configuration/seal/ocikms"
|
|
},
|
|
{
|
|
"title": "HSM PKCS11",
|
|
"badge": {
|
|
"text": "ENT",
|
|
"type": "outlined",
|
|
"color": "neutral"
|
|
},
|
|
"path": "configuration/seal/pkcs11"
|
|
},
|
|
{
|
|
"title": "Transit plugin",
|
|
"path": "configuration/seal/transit"
|
|
},
|
|
{
|
|
"title": "Auto-unseal best practices for Transit",
|
|
"path": "configuration/seal/transit-best-practices"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "<code>sentinel</code>",
|
|
"badge": {
|
|
"text": "ENT",
|
|
"type": "outlined",
|
|
"color": "neutral"
|
|
},
|
|
"path": "configuration/sentinel"
|
|
},
|
|
{
|
|
"title": "<code>service_registration</code>",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "configuration/service-registration"
|
|
},
|
|
{ "heading": "Service registration options" },
|
|
{
|
|
"title": "Consul",
|
|
"path": "configuration/service-registration/consul"
|
|
},
|
|
{
|
|
"title": "Kubernetes",
|
|
"path": "configuration/service-registration/kubernetes"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "<code>storage</code>",
|
|
"routes": [
|
|
{
|
|
"title": "Backend storage for Vault",
|
|
"path": "configuration/storage"
|
|
},
|
|
{ "heading": "Storage options" },
|
|
{
|
|
"title": "Aerospike",
|
|
"path": "configuration/storage/aerospike"
|
|
},
|
|
{
|
|
"title": "Alicloud OSS",
|
|
"path": "configuration/storage/alicloudoss"
|
|
},
|
|
{
|
|
"title": "Azure",
|
|
"path": "configuration/storage/azure"
|
|
},
|
|
{
|
|
"title": "Cassandra",
|
|
"path": "configuration/storage/cassandra"
|
|
},
|
|
{
|
|
"title": "CockroachDB",
|
|
"path": "configuration/storage/cockroachdb"
|
|
},
|
|
{
|
|
"title": "Consul",
|
|
"path": "configuration/storage/consul"
|
|
},
|
|
{
|
|
"title": "CouchDB",
|
|
"path": "configuration/storage/couchdb"
|
|
},
|
|
{
|
|
"title": "DynamoDB",
|
|
"path": "configuration/storage/dynamodb"
|
|
},
|
|
{
|
|
"title": "Etcd",
|
|
"path": "configuration/storage/etcd"
|
|
},
|
|
{
|
|
"title": "File system",
|
|
"path": "configuration/storage/filesystem"
|
|
},
|
|
{
|
|
"title": "FoundationDB",
|
|
"path": "configuration/storage/foundationdb"
|
|
},
|
|
{
|
|
"title": "Google Cloud Spanner",
|
|
"path": "configuration/storage/google-cloud-spanner"
|
|
},
|
|
{
|
|
"title": "Google Cloud Storage",
|
|
"path": "configuration/storage/google-cloud-storage"
|
|
},
|
|
{
|
|
"title": "In-memory storage",
|
|
"path": "configuration/storage/in-memory"
|
|
},
|
|
{
|
|
"title": "Integrated storage (Raft)",
|
|
"path": "configuration/storage/raft"
|
|
},
|
|
{
|
|
"title": "Manta",
|
|
"path": "configuration/storage/manta"
|
|
},
|
|
{
|
|
"title": "MSSQL",
|
|
"path": "configuration/storage/mssql"
|
|
},
|
|
{
|
|
"title": "MySQL",
|
|
"path": "configuration/storage/mysql"
|
|
},
|
|
{
|
|
"title": "OCI Object Storage",
|
|
"path": "configuration/storage/oci-object-storage"
|
|
},
|
|
{
|
|
"title": "PostgreSQL",
|
|
"path": "configuration/storage/postgresql"
|
|
},
|
|
{
|
|
"title": "S3",
|
|
"path": "configuration/storage/s3"
|
|
},
|
|
{
|
|
"title": "Swift",
|
|
"path": "configuration/storage/swift"
|
|
},
|
|
{
|
|
"title": "Zookeeper",
|
|
"path": "configuration/storage/zookeeper"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "<code>telemetry</code>",
|
|
"path": "configuration/telemetry"
|
|
},
|
|
{
|
|
"title": "<code>user_lockout</code>",
|
|
"path": "configuration/user-lockout"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "Vault CLI",
|
|
"routes": [
|
|
{
|
|
"title": "Usage",
|
|
"path": "commands"
|
|
},
|
|
{
|
|
"title": "Use a custom token helper",
|
|
"path": "commands/token-helper"
|
|
},
|
|
{ "divider": true },
|
|
{ "heading": "CLI commands" },
|
|
{
|
|
"title": "Vault Agent",
|
|
"routes": [
|
|
{
|
|
"title": "<code>agent</code>",
|
|
"path": "commands/agent"
|
|
},
|
|
{
|
|
"title": "<code>generate-config</code>",
|
|
"path": "commands/agent/generate-config"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "<code>audit</code>",
|
|
"routes": [
|
|
{
|
|
"title": "<code>disable</code>",
|
|
"path": "commands/audit/disable"
|
|
},
|
|
{
|
|
"title": "<code>enable</code>",
|
|
"path": "commands/audit/enable"
|
|
},
|
|
{
|
|
"title": "<code>list</code>",
|
|
"path": "commands/audit/list"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "<code>auth</code>",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "commands/auth"
|
|
},
|
|
{
|
|
"title": "<code>disable</code>",
|
|
"path": "commands/auth/disable"
|
|
},
|
|
{
|
|
"title": "<code>enable</code>",
|
|
"path": "commands/auth/enable"
|
|
},
|
|
{
|
|
"title": "<code>help</code>",
|
|
"path": "commands/auth/help"
|
|
},
|
|
{
|
|
"title": "<code>list</code>",
|
|
"path": "commands/auth/list"
|
|
},
|
|
{
|
|
"title": "<code>move</code>",
|
|
"path": "commands/auth/move"
|
|
},
|
|
{
|
|
"title": "<code>tune</code>",
|
|
"path": "commands/auth/tune"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "<code>debug</code>",
|
|
"path": "commands/debug"
|
|
},
|
|
{
|
|
"title": "<code>delete</code>",
|
|
"path": "commands/delete"
|
|
},
|
|
{
|
|
"title": "<code>events</code>",
|
|
"path": "commands/events"
|
|
},
|
|
{
|
|
"title": "<code>hcp</code>",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "commands/hcp"
|
|
},
|
|
{
|
|
"title": "<code>connect</code>",
|
|
"path": "commands/hcp/connect"
|
|
},
|
|
{
|
|
"title": "<code>disconnect</code>",
|
|
"path": "commands/hcp/disconnect"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "<code>kv</code>",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "commands/kv"
|
|
},
|
|
{
|
|
"title": "<code>delete</code>",
|
|
"path": "commands/kv/delete"
|
|
},
|
|
{
|
|
"title": "<code>destroy</code>",
|
|
"path": "commands/kv/destroy"
|
|
},
|
|
{
|
|
"title": "<code>enable-versioning</code>",
|
|
"path": "commands/kv/enable-versioning"
|
|
},
|
|
{
|
|
"title": "<code>get</code>",
|
|
"path": "commands/kv/get"
|
|
},
|
|
{
|
|
"title": "<code>list</code>",
|
|
"path": "commands/kv/list"
|
|
},
|
|
{
|
|
"title": "<code>metadata</code>",
|
|
"path": "commands/kv/metadata"
|
|
},
|
|
{
|
|
"title": "<code>patch</code>",
|
|
"path": "commands/kv/patch"
|
|
},
|
|
{
|
|
"title": "<code>put</code>",
|
|
"path": "commands/kv/put"
|
|
},
|
|
{
|
|
"title": "<code>rollback</code>",
|
|
"path": "commands/kv/rollback"
|
|
},
|
|
{
|
|
"title": "<code>undelete</code>",
|
|
"path": "commands/kv/undelete"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "<code>lease</code>",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "commands/lease"
|
|
},
|
|
{
|
|
"title": "<code>lookup</code>",
|
|
"path": "commands/lease/lookup"
|
|
},
|
|
{
|
|
"title": "<code>renew</code>",
|
|
"path": "commands/lease/renew"
|
|
},
|
|
{
|
|
"title": "<code>revoke</code>",
|
|
"path": "commands/lease/revoke"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "<code>license</code>",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "commands/license"
|
|
},
|
|
{
|
|
"title": "<code>get</code>",
|
|
"path": "commands/license/get"
|
|
},
|
|
{
|
|
"title": "<code>inspect</code>",
|
|
"path": "commands/license/inspect"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "<code>list</code>",
|
|
"path": "commands/list"
|
|
},
|
|
{
|
|
"title": "<code>login</code>",
|
|
"path": "commands/login"
|
|
},
|
|
{
|
|
"title": "<code>monitor</code>",
|
|
"path": "commands/monitor"
|
|
},
|
|
{
|
|
"title": "<code>namespace</code>",
|
|
"path": "commands/namespace"
|
|
},
|
|
{
|
|
"title": "<code>operator</code>",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "commands/operator"
|
|
},
|
|
{
|
|
"title": "<code>diagnose</code>",
|
|
"path": "commands/operator/diagnose"
|
|
},
|
|
{
|
|
"title": "<code>generate-root</code>",
|
|
"path": "commands/operator/generate-root"
|
|
},
|
|
{
|
|
"title": "<code>import</code>",
|
|
"path": "commands/operator/import"
|
|
},
|
|
{
|
|
"title": "<code>init</code>",
|
|
"path": "commands/operator/init"
|
|
},
|
|
{
|
|
"title": "<code>key-status</code>",
|
|
"path": "commands/operator/key-status"
|
|
},
|
|
{
|
|
"title": "<code>members</code>",
|
|
"path": "commands/operator/members"
|
|
},
|
|
{
|
|
"title": "<code>migrate</code>",
|
|
"path": "commands/operator/migrate"
|
|
},
|
|
{
|
|
"title": "<code>raft</code>",
|
|
"path": "commands/operator/raft"
|
|
},
|
|
{
|
|
"title": "<code>rekey</code>",
|
|
"path": "commands/operator/rekey"
|
|
},
|
|
{
|
|
"title": "<code>rotate</code>",
|
|
"path": "commands/operator/rotate"
|
|
},
|
|
{
|
|
"title": "<code>seal</code>",
|
|
"path": "commands/operator/seal"
|
|
},
|
|
{
|
|
"title": "<code>step-down</code>",
|
|
"path": "commands/operator/step-down"
|
|
},
|
|
{
|
|
"title": "<code>unseal</code>",
|
|
"path": "commands/operator/unseal"
|
|
},
|
|
{
|
|
"title": "<code>usage</code>",
|
|
"path": "commands/operator/usage"
|
|
},
|
|
{
|
|
"title": "<code>utilization</code>",
|
|
"path": "commands/operator/utilization"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "<code>patch</code>",
|
|
"path": "commands/patch"
|
|
},
|
|
{
|
|
"title": "<code>path-help</code>",
|
|
"path": "commands/path-help"
|
|
},
|
|
{
|
|
"title": "<code>pki</code>",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "commands/pki"
|
|
},
|
|
{
|
|
"title": "<code>health-check</code>",
|
|
"path": "commands/pki/health-check"
|
|
},
|
|
{
|
|
"title": "<code>verify-sign</code>",
|
|
"path": "commands/pki/verify-sign"
|
|
},
|
|
{
|
|
"title": "<code>list-intermediates</code>",
|
|
"path": "commands/pki/list-intermediates"
|
|
},
|
|
{
|
|
"title": "<code>issue</code>",
|
|
"path": "commands/pki/issue"
|
|
},
|
|
{
|
|
"title": "<code>reissue</code>",
|
|
"path": "commands/pki/reissue"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "<code>plugin</code>",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "commands/plugin"
|
|
},
|
|
{
|
|
"title": "<code>deregister</code>",
|
|
"path": "commands/plugin/deregister"
|
|
},
|
|
{
|
|
"title": "<code>info</code>",
|
|
"path": "commands/plugin/info"
|
|
},
|
|
{
|
|
"title": "<code>list</code>",
|
|
"path": "commands/plugin/list"
|
|
},
|
|
{
|
|
"title": "<code>register</code>",
|
|
"path": "commands/plugin/register"
|
|
},
|
|
{
|
|
"title": "<code>reload</code>",
|
|
"path": "commands/plugin/reload"
|
|
},
|
|
{
|
|
"title": "<code>runtime</code>",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "commands/plugin/runtime"
|
|
},
|
|
{
|
|
"title": "<code>deregister</code>",
|
|
"path": "commands/plugin/runtime/deregister"
|
|
},
|
|
{
|
|
"title": "<code>info</code>",
|
|
"path": "commands/plugin/runtime/info"
|
|
},
|
|
{
|
|
"title": "<code>list</code>",
|
|
"path": "commands/plugin/runtime/list"
|
|
},
|
|
{
|
|
"title": "<code>register</code>",
|
|
"path": "commands/plugin/runtime/register"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "<code>policy</code>",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "commands/policy"
|
|
},
|
|
{
|
|
"title": "<code>delete</code>",
|
|
"path": "commands/policy/delete"
|
|
},
|
|
{
|
|
"title": "<code>fmt</code>",
|
|
"path": "commands/policy/fmt"
|
|
},
|
|
{
|
|
"title": "<code>list</code>",
|
|
"path": "commands/policy/list"
|
|
},
|
|
{
|
|
"title": "<code>read</code>",
|
|
"path": "commands/policy/read"
|
|
},
|
|
{
|
|
"title": "<code>write</code>",
|
|
"path": "commands/policy/write"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "<code>print</code>",
|
|
"path": "commands/print"
|
|
},
|
|
{
|
|
"title": "<code>proxy</code>",
|
|
"path": "commands/proxy"
|
|
},
|
|
{
|
|
"title": "<code>read</code>",
|
|
"path": "commands/read"
|
|
},
|
|
{
|
|
"title": "<code>secrets</code>",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "commands/secrets"
|
|
},
|
|
{
|
|
"title": "<code>disable</code>",
|
|
"path": "commands/secrets/disable"
|
|
},
|
|
{
|
|
"title": "<code>enable</code>",
|
|
"path": "commands/secrets/enable"
|
|
},
|
|
{
|
|
"title": "<code>list</code>",
|
|
"path": "commands/secrets/list"
|
|
},
|
|
{
|
|
"title": "<code>move</code>",
|
|
"path": "commands/secrets/move"
|
|
},
|
|
{
|
|
"title": "<code>tune</code>",
|
|
"path": "commands/secrets/tune"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "<code>server</code>",
|
|
"path": "commands/server"
|
|
},
|
|
{
|
|
"title": "<code>ssh</code>",
|
|
"path": "commands/ssh"
|
|
},
|
|
{
|
|
"title": "<code>status</code>",
|
|
"path": "commands/status"
|
|
},
|
|
{
|
|
"title": "<code>token</code>",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "commands/token"
|
|
},
|
|
{
|
|
"title": "<code>capabilities</code>",
|
|
"path": "commands/token/capabilities"
|
|
},
|
|
{
|
|
"title": "<code>create</code>",
|
|
"path": "commands/token/create"
|
|
},
|
|
{
|
|
"title": "<code>lookup</code>",
|
|
"path": "commands/token/lookup"
|
|
},
|
|
{
|
|
"title": "<code>renew</code>",
|
|
"path": "commands/token/renew"
|
|
},
|
|
{
|
|
"title": "<code>revoke</code>",
|
|
"path": "commands/token/revoke"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "<code>transit</code>",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "commands/transit"
|
|
},
|
|
{
|
|
"title": "<code>import</code> and <code>import-version</code>",
|
|
"path": "commands/transit/import"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "<code>transform</code>",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "commands/transform"
|
|
},
|
|
{
|
|
"title": "<code>import</code> and <code>import-version</code>",
|
|
"path": "commands/transform/import"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "<code>unwrap</code>",
|
|
"path": "commands/unwrap"
|
|
},
|
|
{
|
|
"title": "<code>version</code>",
|
|
"path": "commands/version"
|
|
},
|
|
{
|
|
"title": "<code>version-history</code>",
|
|
"path": "commands/version-history"
|
|
},
|
|
{
|
|
"title": "<code>write</code>",
|
|
"path": "commands/write"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "Vault GUI",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "ui"
|
|
},
|
|
{
|
|
"title": "Custom Messages",
|
|
"path": "ui/custom-messages",
|
|
"badge": {
|
|
"text": "ENT",
|
|
"type": "outlined",
|
|
"color": "neutral"
|
|
}
|
|
},
|
|
{
|
|
"title": "CLI emulation",
|
|
"path": "ui/web-cli"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "Vault tools: Agent and Proxy",
|
|
"routes": [
|
|
{
|
|
"title": "Why use Agent or Proxy?",
|
|
"path": "agent-and-proxy"
|
|
},
|
|
{
|
|
"title": "Auto-authentication",
|
|
"routes": [
|
|
{
|
|
"title": "What is auto-authentication?",
|
|
"path": "agent-and-proxy/autoauth"
|
|
},
|
|
{
|
|
"title": "Auto-auth methods",
|
|
"routes": [
|
|
{
|
|
"title": "AliCloud",
|
|
"path": "agent-and-proxy/autoauth/methods/alicloud"
|
|
},
|
|
{
|
|
"title": "AppRole",
|
|
"path": "agent-and-proxy/autoauth/methods/approle"
|
|
},
|
|
{
|
|
"title": "AWS",
|
|
"path": "agent-and-proxy/autoauth/methods/aws"
|
|
},
|
|
{
|
|
"title": "Azure",
|
|
"path": "agent-and-proxy/autoauth/methods/azure"
|
|
},
|
|
{
|
|
"title": "TLS certificates",
|
|
"path": "agent-and-proxy/autoauth/methods/cert"
|
|
},
|
|
{
|
|
"title": "Cloud Foundry (CF)",
|
|
"path": "agent-and-proxy/autoauth/methods/cf"
|
|
},
|
|
{
|
|
"title": "GCP",
|
|
"path": "agent-and-proxy/autoauth/methods/gcp"
|
|
},
|
|
{
|
|
"title": "JWT",
|
|
"path": "agent-and-proxy/autoauth/methods/jwt"
|
|
},
|
|
{
|
|
"title": "LDAP",
|
|
"path": "agent-and-proxy/autoauth/methods/ldap"
|
|
},
|
|
{
|
|
"title": "Kerberos",
|
|
"path": "agent-and-proxy/autoauth/methods/kerberos"
|
|
},
|
|
{
|
|
"title": "Kubernetes",
|
|
"path": "agent-and-proxy/autoauth/methods/kubernetes"
|
|
},
|
|
{
|
|
"title": "Oracle Cloud Infrastructure (OCI",
|
|
"path": "agent-and-proxy/autoauth/methods/oci"
|
|
},
|
|
{
|
|
"title": "Token file",
|
|
"path": "agent-and-proxy/autoauth/methods/token_file"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "Token sinks",
|
|
"routes": [
|
|
{
|
|
"title": "File",
|
|
"path": "agent-and-proxy/autoauth/sinks/file"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "Vault Proxy",
|
|
"routes": [
|
|
{
|
|
"title": "What is Vault Proxy?",
|
|
"path": "agent-and-proxy/proxy"
|
|
},
|
|
{
|
|
"title": "Vault Proxy as Vault API proxy",
|
|
"path": "agent-and-proxy/proxy/apiproxy"
|
|
},
|
|
{
|
|
"title": "Vault Proxy caching",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "agent-and-proxy/proxy/caching"
|
|
},
|
|
{
|
|
"title": "Improve Vault traffic resiliency",
|
|
"path": "agent-and-proxy/proxy/caching/static-secret-caching",
|
|
"badge": {
|
|
"text": "ENT",
|
|
"type": "outlined",
|
|
"color": "neutral"
|
|
}
|
|
},
|
|
{
|
|
"title": "Persistent Caching",
|
|
"routes": [
|
|
{
|
|
"title": "Use built-in persistent caching",
|
|
"path": "agent-and-proxy/proxy/caching/persistent-caches"
|
|
},
|
|
{
|
|
"title": "Use Kubernetes persistent cache",
|
|
"path": "agent-and-proxy/proxy/caching/persistent-caches/kubernetes"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "Risks of inconsistent Proxy and Vault versions",
|
|
"path": "agent-and-proxy/proxy/versions"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "Vault Agent",
|
|
"routes": [
|
|
{
|
|
"title": "What is Vault Agent?",
|
|
"path": "agent-and-proxy/agent"
|
|
},
|
|
{
|
|
"title": "Vault Agent as Vault API proxy",
|
|
"path": "agent-and-proxy/agent/apiproxy"
|
|
},
|
|
{
|
|
"title": "Vault Agent caching",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "agent-and-proxy/agent/caching"
|
|
},
|
|
{
|
|
"title": "Persistent caching",
|
|
"routes": [
|
|
{
|
|
"title": "Use built-in persistent caching",
|
|
"path": "agent-and-proxy/agent/caching/persistent-caches"
|
|
},
|
|
{
|
|
"title": "Use Kubernetes persistent cache",
|
|
"path": "agent-and-proxy/agent/caching/persistent-caches/kubernetes"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "Generate a development config file",
|
|
"path": "agent-and-proxy/agent/generate-config"
|
|
},
|
|
{
|
|
"title": "Run in process supervisor mode",
|
|
"path": "agent-and-proxy/agent/process-supervisor"
|
|
},
|
|
{
|
|
"title": "Use Vault Agent templates",
|
|
"path": "agent-and-proxy/agent/template"
|
|
},
|
|
{
|
|
"title": "Run Vault Agent as a Windows service",
|
|
"path": "agent-and-proxy/agent/winsvc"
|
|
},
|
|
{
|
|
"title": "Risks of inconsistent Agent and Vault versions",
|
|
"path": "agent-and-proxy/agent/versions"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"divider": true
|
|
},
|
|
{
|
|
"title": "Secrets Engines",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "secrets"
|
|
},
|
|
{
|
|
"title": "Active Directory",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "secrets/ad"
|
|
},
|
|
{
|
|
"title": "Migration Guide",
|
|
"path": "secrets/ad/migration-guide"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "AliCloud",
|
|
"path": "secrets/alicloud"
|
|
},
|
|
{
|
|
"title": "AWS",
|
|
"path": "secrets/aws"
|
|
},
|
|
{
|
|
"title": "Azure",
|
|
"path": "secrets/azure"
|
|
},
|
|
{
|
|
"title": "Consul",
|
|
"path": "secrets/consul"
|
|
},
|
|
{
|
|
"title": "Cubbyhole",
|
|
"path": "secrets/cubbyhole"
|
|
},
|
|
{
|
|
"title": "Databases",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "secrets/databases"
|
|
},
|
|
{
|
|
"title": "Cassandra",
|
|
"path": "secrets/databases/cassandra"
|
|
},
|
|
{
|
|
"title": "Couchbase",
|
|
"path": "secrets/databases/couchbase"
|
|
},
|
|
{
|
|
"title": "Elasticsearch",
|
|
"path": "secrets/databases/elasticdb"
|
|
},
|
|
{
|
|
"title": "HanaDB",
|
|
"path": "secrets/databases/hanadb"
|
|
},
|
|
{
|
|
"title": "IBM Db2",
|
|
"path": "secrets/databases/db2"
|
|
},
|
|
{
|
|
"title": "InfluxDB",
|
|
"path": "secrets/databases/influxdb"
|
|
},
|
|
{
|
|
"title": "MongoDB",
|
|
"path": "secrets/databases/mongodb"
|
|
},
|
|
{
|
|
"title": "MongoDB Atlas",
|
|
"path": "secrets/databases/mongodbatlas"
|
|
},
|
|
{
|
|
"title": "MSSQL",
|
|
"path": "secrets/databases/mssql"
|
|
},
|
|
{
|
|
"title": "MySQL/MariaDB",
|
|
"path": "secrets/databases/mysql-maria"
|
|
},
|
|
{
|
|
"title": "Oracle",
|
|
"path": "secrets/databases/oracle"
|
|
},
|
|
{
|
|
"title": "PostgreSQL",
|
|
"path": "secrets/databases/postgresql"
|
|
},
|
|
{
|
|
"title": "Redis",
|
|
"path": "secrets/databases/redis"
|
|
},
|
|
{
|
|
"title": "Redis ElastiCache",
|
|
"path": "secrets/databases/rediselasticache"
|
|
},
|
|
{
|
|
"title": "Redshift",
|
|
"path": "secrets/databases/redshift"
|
|
},
|
|
{
|
|
"title": "Snowflake",
|
|
"path": "secrets/databases/snowflake"
|
|
},
|
|
{
|
|
"title": "Custom",
|
|
"path": "secrets/databases/custom"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "Google Cloud",
|
|
"path": "secrets/gcp"
|
|
},
|
|
{
|
|
"title": "Google Cloud KMS",
|
|
"path": "secrets/gcpkms"
|
|
},
|
|
{
|
|
"title": "Identity",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "secrets/identity"
|
|
},
|
|
{
|
|
"title": "Identity Tokens",
|
|
"path": "secrets/identity/identity-token"
|
|
},
|
|
{
|
|
"title": "OIDC Identity Provider",
|
|
"path": "secrets/identity/oidc-provider"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "Key Management",
|
|
"badge": {
|
|
"text": "ENT",
|
|
"type": "outlined",
|
|
"color": "neutral"
|
|
},
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "secrets/key-management"
|
|
},
|
|
{
|
|
"title": "Azure Key Vault",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "secrets/key-management/azurekeyvault"
|
|
},
|
|
{
|
|
"title": "Setup guide",
|
|
"path": "secrets/key-management/azurekeyvault/setup"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "AWS KMS",
|
|
"path": "secrets/key-management/awskms"
|
|
},
|
|
{
|
|
"title": "GCP Cloud KMS",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "secrets/key-management/gcpkms"
|
|
},
|
|
{
|
|
"title": "Setup guide",
|
|
"path": "secrets/key-management/gcpkms/setup"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "Key/Value",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "secrets/kv"
|
|
},
|
|
{
|
|
"title": "KV version 1",
|
|
"path": "secrets/kv/kv-v1"
|
|
},
|
|
{
|
|
"title": "KV version 2",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "secrets/kv/kv-v2"
|
|
},
|
|
{
|
|
"title": "Upgrade from v1",
|
|
"path": "secrets/kv/kv-v2/upgrade"
|
|
},
|
|
{
|
|
"title": "Setup",
|
|
"path": "secrets/kv/kv-v2/setup"
|
|
},
|
|
{
|
|
"title": "Save random strings",
|
|
"path": "secrets/kv/kv-v2/random-string"
|
|
},
|
|
{
|
|
"title": "Cookbook",
|
|
"routes": [
|
|
{
|
|
"title": "Read data",
|
|
"path": "secrets/kv/kv-v2/cookbook/read-data"
|
|
},
|
|
{
|
|
"title": "Read subkeys",
|
|
"path": "secrets/kv/kv-v2/cookbook/read-subkey"
|
|
},
|
|
{
|
|
"title": "Set max data versions",
|
|
"path": "secrets/kv/kv-v2/cookbook/max-versions"
|
|
},
|
|
{
|
|
"title": "Write data",
|
|
"path": "secrets/kv/kv-v2/cookbook/write-data"
|
|
},
|
|
{
|
|
"title": "Patch/update data",
|
|
"path": "secrets/kv/kv-v2/cookbook/patch-data"
|
|
},
|
|
{
|
|
"title": "Soft delete data",
|
|
"path": "secrets/kv/kv-v2/cookbook/delete-data"
|
|
},
|
|
{
|
|
"title": "Restore soft deleted data",
|
|
"path": "secrets/kv/kv-v2/cookbook/undelete-data"
|
|
},
|
|
{
|
|
"title": "Destroy data",
|
|
"path": "secrets/kv/kv-v2/cookbook/destroy-data"
|
|
},
|
|
{
|
|
"title": "Write custom metadata",
|
|
"path": "secrets/kv/kv-v2/cookbook/custom-metadata"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "KMIP",
|
|
"badge": {
|
|
"text": "ENT",
|
|
"type": "outlined",
|
|
"color": "neutral"
|
|
},
|
|
"path": "secrets/kmip"
|
|
},
|
|
{
|
|
"title": "KMIP - Profile Support",
|
|
"path": "secrets/kmip-profiles",
|
|
"hidden": true
|
|
},
|
|
{
|
|
"title": "Kubernetes",
|
|
"path": "secrets/kubernetes"
|
|
},
|
|
{
|
|
"title": "MongoDB Atlas",
|
|
"path": "secrets/mongodbatlas"
|
|
},
|
|
{
|
|
"title": "Nomad",
|
|
"path": "secrets/nomad"
|
|
},
|
|
{
|
|
"title": "LDAP",
|
|
"path": "secrets/ldap"
|
|
},
|
|
{
|
|
"title": "PKI (Certificates)",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "secrets/pki"
|
|
},
|
|
{
|
|
"title": "Setup and Usage",
|
|
"path": "secrets/pki/setup"
|
|
},
|
|
{
|
|
"title": "Quick Start - Root CA Setup",
|
|
"path": "secrets/pki/quick-start-root-ca"
|
|
},
|
|
{
|
|
"title": "Quick Start - Intermediate CA Setup",
|
|
"path": "secrets/pki/quick-start-intermediate-ca"
|
|
},
|
|
{
|
|
"title": "Considerations",
|
|
"path": "secrets/pki/considerations"
|
|
},
|
|
{
|
|
"title": "Rotation Primitives",
|
|
"path": "secrets/pki/rotation-primitives"
|
|
},
|
|
{
|
|
"title": "Certificate Issuance External Policy Service (CIEPS)",
|
|
"badge": {
|
|
"text": "ENT",
|
|
"type": "outlined",
|
|
"color": "neutral"
|
|
},
|
|
"path": "secrets/pki/cieps"
|
|
},
|
|
{
|
|
"title": "Enrollment over Secure Transport (EST)",
|
|
"path": "secrets/pki/est",
|
|
"badge": {
|
|
"text": "ENT",
|
|
"type": "outlined",
|
|
"color": "neutral"
|
|
},
|
|
"path": "secrets/pki/est"
|
|
},
|
|
{
|
|
"title": "Certificate Management Protocol (CMPv2)",
|
|
"badge": {
|
|
"text": "ENT",
|
|
"type": "outlined",
|
|
"color": "neutral"
|
|
},
|
|
"path": "secrets/pki/cmpv2"
|
|
},
|
|
{
|
|
"title": "Troubleshooting ACME",
|
|
"path": "secrets/pki/troubleshooting-acme"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "RabbitMQ",
|
|
"path": "secrets/rabbitmq"
|
|
},
|
|
{
|
|
"title": "SSH",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "secrets/ssh"
|
|
},
|
|
{
|
|
"title": "Signed Certificates",
|
|
"path": "secrets/ssh/signed-ssh-certificates"
|
|
},
|
|
{
|
|
"title": "SSH OTP",
|
|
"path": "secrets/ssh/one-time-ssh-passwords"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "HCP Terraform",
|
|
"path": "secrets/terraform"
|
|
},
|
|
{
|
|
"title": "TOTP",
|
|
"path": "secrets/totp"
|
|
},
|
|
{
|
|
"title": "Transform",
|
|
"badge": {
|
|
"text": "ENT",
|
|
"type": "outlined",
|
|
"color": "neutral"
|
|
},
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "secrets/transform"
|
|
},
|
|
{
|
|
"title": "FF3-1 Tweak Usage",
|
|
"path": "secrets/transform/ff3-tweak-details"
|
|
},
|
|
{
|
|
"title": "Tokenization Transform",
|
|
"badge": {
|
|
"text": "ENT",
|
|
"type": "outlined",
|
|
"color": "neutral"
|
|
},
|
|
"path": "secrets/transform/tokenization"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "Transit",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "secrets/transit"
|
|
},
|
|
{
|
|
"title": "Import Key Wrapping Guide",
|
|
"path": "secrets/transit/key-wrapping-guide"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "Venafi (Certificates)",
|
|
"path": "secrets/venafi"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "Secrets Sync",
|
|
"badge": {
|
|
"text": "ENT",
|
|
"type": "outlined",
|
|
"color": "neutral"
|
|
},
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "sync"
|
|
},
|
|
{
|
|
"title": "Sync to AWS Secrets Manager",
|
|
"path": "sync/awssm"
|
|
},
|
|
{
|
|
"title": "Sync to Azure Key Vault",
|
|
"path": "sync/azurekv"
|
|
},
|
|
{
|
|
"title": "Sync to GCP Secret Manager",
|
|
"path": "sync/gcpsm"
|
|
},
|
|
{
|
|
"title": "Sync to GitHub",
|
|
"path": "sync/github"
|
|
},
|
|
{
|
|
"title": "Sync to Vercel Project",
|
|
"path": "sync/vercelproject"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "Secrets Import",
|
|
"badge": {
|
|
"text": "ENT",
|
|
"type": "outlined",
|
|
"color": "neutral"
|
|
},
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "import",
|
|
"badge": {
|
|
"text": "ALPHA",
|
|
"type": "outlined",
|
|
"color": "highlight"
|
|
}
|
|
},
|
|
{
|
|
"title": "GCP Secret Manager",
|
|
"path": "import/gcpsm"
|
|
},
|
|
{
|
|
"title": "Mappings",
|
|
"path": "import/mappings"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "AuthN methods",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "auth"
|
|
},
|
|
{
|
|
"title": "AppRole",
|
|
"routes": [
|
|
{
|
|
"title": "Use AppRole authN",
|
|
"path": "auth/approle"
|
|
},
|
|
{
|
|
"title": "AppRole best practices",
|
|
"path": "auth/approle/approle-pattern"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "AliCloud",
|
|
"path": "auth/alicloud"
|
|
},
|
|
{
|
|
"title": "AWS",
|
|
"path": "auth/aws"
|
|
},
|
|
{
|
|
"title": "Azure",
|
|
"path": "auth/azure"
|
|
},
|
|
{
|
|
"title": "Cloud Foundry",
|
|
"path": "auth/cf"
|
|
},
|
|
{
|
|
"title": "GitHub",
|
|
"path": "auth/github"
|
|
},
|
|
{
|
|
"title": "Google Cloud",
|
|
"path": "auth/gcp"
|
|
},
|
|
{
|
|
"title": "JWT/OIDC",
|
|
"routes": [
|
|
{
|
|
"title": "Use JWT/OIDC",
|
|
"path": "auth/jwt"
|
|
},
|
|
{
|
|
"title": "OIDC providers",
|
|
"routes": [
|
|
{
|
|
"title": "OIDC provider list",
|
|
"path": "auth/jwt/oidc-providers"
|
|
},
|
|
{
|
|
"title": "ADFS",
|
|
"path": "auth/jwt/oidc-providers/adfs"
|
|
},
|
|
{
|
|
"title": "Auth0",
|
|
"path": "auth/jwt/oidc-providers/auth0"
|
|
},
|
|
{
|
|
"title": "Azure AD",
|
|
"path": "auth/jwt/oidc-providers/azuread"
|
|
},
|
|
{
|
|
"title": "Forgerock",
|
|
"path": "auth/jwt/oidc-providers/forgerock"
|
|
},
|
|
{
|
|
"title": "Gitlab",
|
|
"path": "auth/jwt/oidc-providers/gitlab"
|
|
},
|
|
{
|
|
"title": "Google",
|
|
"path": "auth/jwt/oidc-providers/google"
|
|
},
|
|
{
|
|
"title": "Keycloak",
|
|
"path": "auth/jwt/oidc-providers/keycloak"
|
|
},
|
|
{
|
|
"title": "Kubernetes",
|
|
"path": "auth/jwt/oidc-providers/kubernetes"
|
|
},
|
|
{
|
|
"title": "Okta",
|
|
"path": "auth/jwt/oidc-providers/okta"
|
|
},
|
|
{
|
|
"title": "SecureAuth",
|
|
"path": "auth/jwt/oidc-providers/secureauth"
|
|
},
|
|
{
|
|
"title": "IBM Verify",
|
|
"path": "auth/jwt/oidc-providers/ibmisam"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "Kerberos",
|
|
"path": "auth/kerberos"
|
|
},
|
|
{
|
|
"title": "Kubernetes",
|
|
"path": "auth/kubernetes"
|
|
},
|
|
{
|
|
"title": "LDAP",
|
|
"path": "auth/ldap"
|
|
},
|
|
{
|
|
"title": "Login MFA",
|
|
"routes": [
|
|
{
|
|
"title": "Setup login MFA",
|
|
"path": "auth/login-mfa"
|
|
},
|
|
{
|
|
"title": "Login MFA FAQ",
|
|
"path": "auth/login-mfa/faq"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "Oracle Cloud Infrastructure",
|
|
"path": "auth/oci"
|
|
},
|
|
{
|
|
"title": "Okta",
|
|
"path": "auth/okta"
|
|
},
|
|
{
|
|
"title": "RADIUS",
|
|
"path": "auth/radius"
|
|
},
|
|
{
|
|
"title": "Use SAML authentication",
|
|
"badge": {
|
|
"text": "ENT",
|
|
"type": "outlined",
|
|
"color": "neutral"
|
|
},
|
|
"routes": [
|
|
{
|
|
"title": "Set up SAML authN",
|
|
"path": "auth/saml"
|
|
},
|
|
{
|
|
"title": "Use AD FS for SAML authN",
|
|
"path": "auth/saml/adfs"
|
|
},
|
|
{
|
|
"title": "Link SAML AD groups to Vault",
|
|
"path": "auth/saml/link-vault-group-to-ad"
|
|
},
|
|
{
|
|
"title": "Troubleshoot SAML+ADFS",
|
|
"routes": [
|
|
{
|
|
"title": "Before you start",
|
|
"path": "auth/saml/troubleshoot-adfs"
|
|
},
|
|
{
|
|
"title": "Bad mapping",
|
|
"path": "auth/saml/troubleshoot-adfs/bad-mapping"
|
|
},
|
|
{
|
|
"title": "Invalid `BoundSubjects`",
|
|
"path": "auth/saml/troubleshoot-adfs/boundsubjects"
|
|
},
|
|
{
|
|
"title": "AD FS event 320",
|
|
"path": "auth/saml/troubleshoot-adfs/adfs-event-320"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "TLS Certificates",
|
|
"path": "auth/cert"
|
|
},
|
|
{
|
|
"title": "Tokens",
|
|
"path": "auth/token"
|
|
},
|
|
{
|
|
"title": "Username and Password",
|
|
"path": "auth/userpass"
|
|
},
|
|
{
|
|
"divider": true
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "Audit Devices",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "audit"
|
|
},
|
|
{
|
|
"title": "File",
|
|
"path": "audit/file"
|
|
},
|
|
{
|
|
"title": "Syslog",
|
|
"path": "audit/syslog"
|
|
},
|
|
{
|
|
"title": "Socket",
|
|
"path": "audit/socket"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "Plugins",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "plugins"
|
|
},
|
|
{
|
|
"title": "Plugin Architecture",
|
|
"path": "plugins/plugin-architecture"
|
|
},
|
|
{
|
|
"title": "Plugin Development",
|
|
"path": "plugins/plugin-development"
|
|
},
|
|
{
|
|
"title": "Plugin Development — Event Notifications",
|
|
"path": "plugins/plugin-development-event-notifications",
|
|
"badge": {
|
|
"text": "ENT",
|
|
"type": "outlined",
|
|
"color": "neutral"
|
|
}
|
|
},
|
|
{
|
|
"title": "Plugin Management",
|
|
"path": "plugins/plugin-management"
|
|
},
|
|
{
|
|
"title": "Containerized plugins",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "plugins/containerized-plugins"
|
|
},
|
|
{
|
|
"title": "Add a containerized plugin",
|
|
"path": "plugins/containerized-plugins/add-a-containerized-plugin"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "Integrations Library",
|
|
"href": "/vault/integrations"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "Vault Integration Program",
|
|
"path": "partnerships"
|
|
},
|
|
{
|
|
"title": "Vault interoperability matrix",
|
|
"path": "interoperability-matrix"
|
|
},
|
|
{
|
|
"title": "Troubleshoot Vault",
|
|
"routes": [
|
|
{
|
|
"title": "Generate a root token",
|
|
"path": "troubleshoot/generate-root-token"
|
|
},
|
|
{
|
|
"title": "Troubleshoot lease errors",
|
|
"path": "troubleshoot/lease-issues"
|
|
},
|
|
{
|
|
"title": "Tune the lease TTL",
|
|
"path": "troubleshoot/tune-lease-ttl"
|
|
},
|
|
{
|
|
"title": "Troubleshooting tutorials",
|
|
"href": "https://learn.hashicorp.com/tutorials/vault/troubleshooting-vault"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"divider": true
|
|
},
|
|
{
|
|
"title": "Platforms",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "platform"
|
|
},
|
|
{
|
|
"title": "AWS",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "platform/aws"
|
|
},
|
|
{
|
|
"title": "Vault Lambda Extension",
|
|
"path": "platform/aws/lambda-extension"
|
|
},
|
|
{
|
|
"title": "Running Vault",
|
|
"path": "platform/aws/run"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "GitHub",
|
|
"routes": [
|
|
{
|
|
"title": "GitHub Actions",
|
|
"path": "platform/github-actions"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "Kubernetes",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "platform/k8s"
|
|
},
|
|
{
|
|
"title": "Agent Injector vs. Vault CSI Provider",
|
|
"path": "platform/k8s/injector-csi"
|
|
},
|
|
{
|
|
"title": "Migrate Consul to Raft storage",
|
|
"path": "platform/k8s/consul-to-raft"
|
|
},
|
|
{
|
|
"title": "Helm Chart",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "platform/k8s/helm"
|
|
},
|
|
{
|
|
"title": "Running Vault",
|
|
"path": "platform/k8s/helm/run"
|
|
},
|
|
{
|
|
"title": "Enterprise Licensing",
|
|
"path": "platform/k8s/helm/enterprise"
|
|
},
|
|
{
|
|
"title": "Running Vault on OpenShift",
|
|
"path": "platform/k8s/helm/openshift"
|
|
},
|
|
{
|
|
"title": "Configuration",
|
|
"path": "platform/k8s/helm/configuration"
|
|
},
|
|
{
|
|
"title": "Terraform",
|
|
"path": "platform/k8s/helm/terraform"
|
|
},
|
|
{
|
|
"title": "Examples",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "platform/k8s/helm/examples"
|
|
},
|
|
{
|
|
"title": "Development",
|
|
"path": "platform/k8s/helm/examples/development"
|
|
},
|
|
{
|
|
"title": "Standalone with Load Balanced UI",
|
|
"path": "platform/k8s/helm/examples/standalone-load-balanced-ui"
|
|
},
|
|
{
|
|
"title": "Standalone with TLS",
|
|
"path": "platform/k8s/helm/examples/standalone-tls"
|
|
},
|
|
{
|
|
"title": "Standalone with Audit Storage",
|
|
"path": "platform/k8s/helm/examples/standalone-audit"
|
|
},
|
|
{
|
|
"title": "External Vault",
|
|
"path": "platform/k8s/helm/examples/external"
|
|
},
|
|
{
|
|
"title": "Using Kubernetes Auth Method",
|
|
"path": "platform/k8s/helm/examples/kubernetes-auth"
|
|
},
|
|
{
|
|
"title": "HA Cluster with Consul",
|
|
"path": "platform/k8s/helm/examples/ha-with-consul"
|
|
},
|
|
{
|
|
"title": "HA Cluster with Raft",
|
|
"path": "platform/k8s/helm/examples/ha-with-raft"
|
|
},
|
|
{
|
|
"title": "HA Cluster with Raft and TLS",
|
|
"path": "platform/k8s/helm/examples/ha-tls"
|
|
},
|
|
{
|
|
"title": "HA Enterprise Cluster with Raft",
|
|
"path": "platform/k8s/helm/examples/enterprise-with-raft"
|
|
},
|
|
{
|
|
"title": "HA Enterprise DR Clusters with Raft",
|
|
"path": "platform/k8s/helm/examples/enterprise-dr-with-raft"
|
|
},
|
|
{
|
|
"title": "HA Enterprise Performance Clusters with Raft",
|
|
"path": "platform/k8s/helm/examples/enterprise-perf-with-raft"
|
|
},
|
|
{
|
|
"title": "Vault Agent Injector TLS Configuration",
|
|
"path": "platform/k8s/helm/examples/injector-tls"
|
|
},
|
|
{
|
|
"title": "Vault Agent Injector TLS with Cert-Manager",
|
|
"path": "platform/k8s/helm/examples/injector-tls-cert-manager"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "Agent Injector",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "platform/k8s/injector"
|
|
},
|
|
{
|
|
"title": "Annotations",
|
|
"path": "platform/k8s/injector/annotations"
|
|
},
|
|
{
|
|
"title": "Installation",
|
|
"path": "platform/k8s/injector/installation"
|
|
},
|
|
{
|
|
"title": "Examples",
|
|
"path": "platform/k8s/injector/examples"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "Vault CSI Provider",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "platform/k8s/csi"
|
|
},
|
|
{
|
|
"title": "Installation",
|
|
"path": "platform/k8s/csi/installation"
|
|
},
|
|
{
|
|
"title": "Configurations",
|
|
"path": "platform/k8s/csi/configurations"
|
|
},
|
|
{
|
|
"title": "Examples",
|
|
"path": "platform/k8s/csi/examples"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "Vault Secrets Operator",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "platform/k8s/vso"
|
|
},
|
|
{
|
|
"title": "Installation",
|
|
"path": "platform/k8s/vso/installation"
|
|
},
|
|
{
|
|
"title": "Secret Sources",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "platform/k8s/vso/sources"
|
|
},
|
|
{
|
|
"title": "Vault",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "platform/k8s/vso/sources/vault"
|
|
},
|
|
{
|
|
"title": "Authentication",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "platform/k8s/vso/sources/vault/auth"
|
|
},
|
|
{
|
|
"title": "AWS",
|
|
"path": "platform/k8s/vso/sources/vault/auth/aws"
|
|
},
|
|
{
|
|
"title": "GCP",
|
|
"path": "platform/k8s/vso/sources/vault/auth/gcp"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "Encrypted client cache",
|
|
"path": "platform/k8s/vso/sources/vault/client-cache"
|
|
},
|
|
{
|
|
"title": "Instant updates",
|
|
"path": "platform/k8s/vso/sources/vault/instant-updates"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "HCP Vault Secrets",
|
|
"path": "platform/k8s/vso/sources/hvs"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "Secret Data Transformation",
|
|
"path": "platform/k8s/vso/secret-transformation"
|
|
},
|
|
{
|
|
"title": "Helm Chart",
|
|
"path": "platform/k8s/vso/helm"
|
|
},
|
|
{
|
|
"title": "Examples",
|
|
"path": "platform/k8s/vso/examples"
|
|
},
|
|
{
|
|
"title": "Telemetry",
|
|
"path": "platform/k8s/vso/telemetry"
|
|
},
|
|
{
|
|
"title": "API Reference",
|
|
"path": "platform/k8s/vso/api-reference"
|
|
},
|
|
{
|
|
"title": "OpenShift",
|
|
"path": "platform/k8s/vso/openshift"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "Microsoft SQL Server EKM provider",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "platform/mssql"
|
|
},
|
|
{
|
|
"title": "Installation",
|
|
"path": "platform/mssql/installation"
|
|
},
|
|
{
|
|
"title": "Configuration",
|
|
"path": "platform/mssql/configuration"
|
|
},
|
|
{
|
|
"title": "Key Rotation",
|
|
"path": "platform/mssql/rotation"
|
|
},
|
|
{
|
|
"title": "Upgrading",
|
|
"path": "platform/mssql/upgrading"
|
|
},
|
|
{
|
|
"title": "Troubleshooting",
|
|
"path": "platform/mssql/troubleshooting"
|
|
},
|
|
{
|
|
"title": "Release Notes",
|
|
"path": "platform/mssql/changelog"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "ServiceNow",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "platform/servicenow"
|
|
},
|
|
{
|
|
"title": "Installation",
|
|
"path": "platform/servicenow/installation"
|
|
},
|
|
{
|
|
"title": "Configuration",
|
|
"path": "platform/servicenow/configuration"
|
|
},
|
|
{
|
|
"title": "Troubleshooting",
|
|
"path": "platform/servicenow/troubleshooting"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"divider": true
|
|
},
|
|
{
|
|
"title": "Upgrade Guides",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "upgrading"
|
|
},
|
|
{
|
|
"title": "Upgrade Vault HA installations",
|
|
"path": "upgrading/vault-ha-upgrade"
|
|
},
|
|
{
|
|
"title": "Upgrade Plugins",
|
|
"path": "upgrading/plugins"
|
|
},
|
|
{
|
|
"title": "Upgrade to Raft WAL",
|
|
"path": "upgrading/raft-wal"
|
|
},
|
|
{
|
|
"title": "Resolve duplicate identities",
|
|
"routes": [
|
|
{
|
|
"title": "Process overview",
|
|
"path": "upgrading/deduplication"
|
|
},
|
|
{
|
|
"title": "Fix different-case entity alias duplicates",
|
|
"path": "upgrading/deduplication/different-case"
|
|
},
|
|
{
|
|
"title": "Fix entity and group duplicates",
|
|
"path": "upgrading/deduplication/entity-group"
|
|
},
|
|
{
|
|
"title": "Resolve ACL policy templates",
|
|
"path": "upgrading/deduplication/acl-policy-templates"
|
|
},
|
|
{
|
|
"title": "Resolve Terraform config",
|
|
"path": "upgrading/deduplication/terraform-refs"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "Upgrade to 1.19.x",
|
|
"path": "upgrading/upgrade-to-1.19.x"
|
|
},
|
|
{
|
|
"title": "Upgrade to 1.18.x",
|
|
"path": "upgrading/upgrade-to-1.18.x"
|
|
},
|
|
{
|
|
"title": "Upgrade to 1.17.x",
|
|
"path": "upgrading/upgrade-to-1.17.x"
|
|
},
|
|
{
|
|
"title": "Upgrade to 1.16.x",
|
|
"path": "upgrading/upgrade-to-1.16.x"
|
|
},
|
|
{
|
|
"title": "Upgrade to 1.15.x",
|
|
"path": "upgrading/upgrade-to-1.15.x"
|
|
},
|
|
{
|
|
"title": "Upgrade to 1.14.x",
|
|
"path": "upgrading/upgrade-to-1.14.x"
|
|
},
|
|
{
|
|
"title": "Upgrade to 1.13.x",
|
|
"path": "upgrading/upgrade-to-1.13.x"
|
|
},
|
|
{
|
|
"title": "Upgrade to 1.12.x",
|
|
"path": "upgrading/upgrade-to-1.12.x"
|
|
},
|
|
{
|
|
"title": "Upgrade to 1.11.x",
|
|
"path": "upgrading/upgrade-to-1.11.x"
|
|
},
|
|
{
|
|
"title": "Upgrade to 1.10.x",
|
|
"path": "upgrading/upgrade-to-1.10.x"
|
|
},
|
|
{
|
|
"title": "Upgrade to 1.9.x",
|
|
"path": "upgrading/upgrade-to-1.9.x"
|
|
},
|
|
{
|
|
"title": "Upgrade to 1.8.x",
|
|
"path": "upgrading/upgrade-to-1.8.x"
|
|
},
|
|
{
|
|
"title": "Upgrade to 1.7.x",
|
|
"path": "upgrading/upgrade-to-1.7.x"
|
|
},
|
|
{
|
|
"title": "Upgrade to 1.6.3",
|
|
"path": "upgrading/upgrade-to-1.6.3"
|
|
},
|
|
{
|
|
"title": "Upgrade to 1.6.2",
|
|
"path": "upgrading/upgrade-to-1.6.2"
|
|
},
|
|
{
|
|
"title": "Upgrade to 1.6.1",
|
|
"path": "upgrading/upgrade-to-1.6.1"
|
|
},
|
|
{
|
|
"title": "Upgrade to 1.6.0",
|
|
"path": "upgrading/upgrade-to-1.6.0"
|
|
},
|
|
{
|
|
"title": "Upgrade to 1.5.3",
|
|
"path": "upgrading/upgrade-to-1.5.3"
|
|
},
|
|
{
|
|
"title": "Upgrade to 1.5.2",
|
|
"path": "upgrading/upgrade-to-1.5.2"
|
|
},
|
|
{
|
|
"title": "Upgrade to 1.5.1",
|
|
"path": "upgrading/upgrade-to-1.5.1"
|
|
},
|
|
{
|
|
"title": "Upgrade to 1.5.0",
|
|
"path": "upgrading/upgrade-to-1.5.0"
|
|
},
|
|
{
|
|
"title": "Upgrade to 1.4.6",
|
|
"path": "upgrading/upgrade-to-1.4.6"
|
|
},
|
|
{
|
|
"title": "Upgrade to 1.4.5",
|
|
"path": "upgrading/upgrade-to-1.4.5"
|
|
},
|
|
{
|
|
"title": "Upgrade to 1.4.4",
|
|
"path": "upgrading/upgrade-to-1.4.4"
|
|
},
|
|
{
|
|
"title": "Upgrade to 1.4.1",
|
|
"path": "upgrading/upgrade-to-1.4.1"
|
|
},
|
|
{
|
|
"title": "Upgrade to 1.4.0",
|
|
"path": "upgrading/upgrade-to-1.4.0"
|
|
},
|
|
{
|
|
"title": "Upgrade to 1.3.10",
|
|
"path": "upgrading/upgrade-to-1.3.10"
|
|
},
|
|
{
|
|
"title": "Upgrade to 1.3.9",
|
|
"path": "upgrading/upgrade-to-1.3.9"
|
|
},
|
|
{
|
|
"title": "Upgrade to 1.3.8",
|
|
"path": "upgrading/upgrade-to-1.3.8"
|
|
},
|
|
{
|
|
"title": "Upgrade to 1.3.5",
|
|
"path": "upgrading/upgrade-to-1.3.5"
|
|
},
|
|
{
|
|
"title": "Upgrade to 1.3.4",
|
|
"path": "upgrading/upgrade-to-1.3.4"
|
|
},
|
|
{
|
|
"title": "Upgrade to 1.3.3",
|
|
"path": "upgrading/upgrade-to-1.3.3"
|
|
},
|
|
{
|
|
"title": "Upgrade to 1.3.2",
|
|
"path": "upgrading/upgrade-to-1.3.2"
|
|
},
|
|
{
|
|
"title": "Upgrade to 1.3.0",
|
|
"path": "upgrading/upgrade-to-1.3.0"
|
|
},
|
|
{
|
|
"title": "Upgrade to 1.2.7",
|
|
"path": "upgrading/upgrade-to-1.2.7"
|
|
},
|
|
{
|
|
"title": "Upgrade to 1.2.6",
|
|
"path": "upgrading/upgrade-to-1.2.6"
|
|
},
|
|
{
|
|
"title": "Upgrade to 1.2.5",
|
|
"path": "upgrading/upgrade-to-1.2.5"
|
|
},
|
|
{
|
|
"title": "Upgrade to 1.2.4",
|
|
"path": "upgrading/upgrade-to-1.2.4"
|
|
},
|
|
{
|
|
"title": "Upgrade to 1.2.1",
|
|
"path": "upgrading/upgrade-to-1.2.1"
|
|
},
|
|
{
|
|
"title": "Upgrade to 1.2.0",
|
|
"path": "upgrading/upgrade-to-1.2.0"
|
|
},
|
|
{
|
|
"title": "Upgrade to 1.1.2",
|
|
"path": "upgrading/upgrade-to-1.1.2"
|
|
},
|
|
{
|
|
"title": "Upgrade to 1.1.1",
|
|
"path": "upgrading/upgrade-to-1.1.1"
|
|
},
|
|
{
|
|
"title": "Upgrade to 1.1.0",
|
|
"path": "upgrading/upgrade-to-1.1.0"
|
|
},
|
|
{
|
|
"title": "Upgrade to 1.0.0",
|
|
"path": "upgrading/upgrade-to-1.0.0"
|
|
},
|
|
{
|
|
"title": "Upgrade to 0.11.6",
|
|
"path": "upgrading/upgrade-to-0.11.6"
|
|
},
|
|
{
|
|
"title": "Upgrade to 0.11.2",
|
|
"path": "upgrading/upgrade-to-0.11.2"
|
|
},
|
|
{
|
|
"title": "Upgrade to 0.11.0",
|
|
"path": "upgrading/upgrade-to-0.11.0"
|
|
},
|
|
{
|
|
"title": "Upgrade to 0.10.4",
|
|
"path": "upgrading/upgrade-to-0.10.4"
|
|
},
|
|
{
|
|
"title": "Upgrade to 0.10.2",
|
|
"path": "upgrading/upgrade-to-0.10.2"
|
|
},
|
|
{
|
|
"title": "Upgrade to 0.10.0",
|
|
"path": "upgrading/upgrade-to-0.10.0"
|
|
},
|
|
{
|
|
"title": "Upgrade to 0.9.6",
|
|
"path": "upgrading/upgrade-to-0.9.6"
|
|
},
|
|
{
|
|
"title": "Upgrade to 0.9.3",
|
|
"path": "upgrading/upgrade-to-0.9.3"
|
|
},
|
|
{
|
|
"title": "Upgrade to 0.9.2",
|
|
"path": "upgrading/upgrade-to-0.9.2"
|
|
},
|
|
{
|
|
"title": "Upgrade to 0.9.1",
|
|
"path": "upgrading/upgrade-to-0.9.1"
|
|
},
|
|
{
|
|
"title": "Upgrade to 0.9.0",
|
|
"path": "upgrading/upgrade-to-0.9.0"
|
|
},
|
|
{
|
|
"title": "Upgrade to 0.8.0",
|
|
"path": "upgrading/upgrade-to-0.8.0"
|
|
},
|
|
{
|
|
"title": "Upgrade to 0.7.0",
|
|
"path": "upgrading/upgrade-to-0.7.0"
|
|
},
|
|
{
|
|
"title": "Upgrade to 0.6.4",
|
|
"path": "upgrading/upgrade-to-0.6.4"
|
|
},
|
|
{
|
|
"title": "Upgrade to 0.6.3",
|
|
"path": "upgrading/upgrade-to-0.6.3"
|
|
},
|
|
{
|
|
"title": "Upgrade to 0.6.2",
|
|
"path": "upgrading/upgrade-to-0.6.2"
|
|
},
|
|
{
|
|
"title": "Upgrade to 0.6.1",
|
|
"path": "upgrading/upgrade-to-0.6.1"
|
|
},
|
|
{
|
|
"title": "Upgrade to 0.6.0",
|
|
"path": "upgrading/upgrade-to-0.6.0"
|
|
},
|
|
{
|
|
"title": "Upgrade to 0.5.1",
|
|
"path": "upgrading/upgrade-to-0.5.1"
|
|
},
|
|
{
|
|
"title": "Upgrade to 0.5.0",
|
|
"path": "upgrading/upgrade-to-0.5.0"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"divider": true
|
|
},
|
|
{
|
|
"title": "Release Notes",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "release-notes"
|
|
},
|
|
{
|
|
"title": "1.18.0",
|
|
"path": "release-notes/1.18.0"
|
|
},
|
|
{
|
|
"title": "1.17.0",
|
|
"path": "release-notes/1.17.0"
|
|
},
|
|
{
|
|
"title": "1.16.1",
|
|
"path": "release-notes/1.16.1"
|
|
},
|
|
{
|
|
"title": "1.15.0",
|
|
"path": "release-notes/1.15.0"
|
|
},
|
|
{
|
|
"title": "1.14.0",
|
|
"path": "release-notes/1.14.0"
|
|
},
|
|
{
|
|
"title": "1.13.0",
|
|
"path": "release-notes/1.13.0"
|
|
},
|
|
{
|
|
"title": "1.12.0",
|
|
"path": "release-notes/1.12.0"
|
|
},
|
|
{
|
|
"title": "1.11.0",
|
|
"path": "release-notes/1.11.0"
|
|
},
|
|
{
|
|
"title": "1.10.0",
|
|
"path": "release-notes/1.10.0"
|
|
},
|
|
{
|
|
"title": "1.9.0",
|
|
"path": "release-notes/1.9.0"
|
|
},
|
|
{
|
|
"title": "1.8.0",
|
|
"path": "release-notes/1.8.0"
|
|
},
|
|
{
|
|
"title": "1.7.0",
|
|
"path": "release-notes/1.7.0"
|
|
},
|
|
{
|
|
"title": "1.6.0",
|
|
"path": "release-notes/1.6.0"
|
|
},
|
|
{
|
|
"title": "1.5.0",
|
|
"path": "release-notes/1.5.0"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"divider": true
|
|
},
|
|
{
|
|
"title": "Deprecation notices",
|
|
"path": "deprecation"
|
|
},
|
|
{
|
|
"divider": true
|
|
},
|
|
{
|
|
"title": "FAQ",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "faq"
|
|
},
|
|
{
|
|
"title": "Feature Deprecation Notice and Plans",
|
|
"href": "https://developer.hashicorp.com/vault/docs/deprecation/faq"
|
|
},
|
|
{
|
|
"title": "License",
|
|
"href": "https://developer.hashicorp.com/vault/docs/enterprise/license/faq"
|
|
},
|
|
{
|
|
"title": "Client Count",
|
|
"href": "https://developer.hashicorp.com/vault/docs/concepts/client-count/faq"
|
|
},
|
|
{
|
|
"title": "Login MFA",
|
|
"href": "https://developer.hashicorp.com/vault/docs/auth/login-mfa/faq"
|
|
},
|
|
{
|
|
"title": "Server Side Consistent Token",
|
|
"path": "faq/ssct"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"divider": true
|
|
},
|
|
{
|
|
"title": "Glossary",
|
|
"path": "glossary"
|
|
},
|
|
{
|
|
"divider": true
|
|
},
|
|
{
|
|
"title": "Vault Enterprise",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "enterprise"
|
|
},
|
|
{
|
|
"title": "Licensing",
|
|
"routes": [
|
|
{
|
|
"title": "Overview",
|
|
"path": "enterprise/license"
|
|
},
|
|
{
|
|
"title": "Autoload an enterprise license",
|
|
"path": "enterprise/license/autoloading"
|
|
},
|
|
{
|
|
"title": "Automated license utilization reporting",
|
|
"path": "enterprise/license/utilization-reporting"
|
|
},
|
|
{
|
|
"title": "Manual license utilization reporting",
|
|
"path": "enterprise/license/manual-reporting"
|
|
},
|
|
{
|
|
"title": "Anonymous product usage reporting",
|
|
"path": "enterprise/license/product-usage-reporting"
|
|
},
|
|
{
|
|
"title": "FAQ",
|
|
"path": "enterprise/license/faq"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "Long-term support (LTS)",
|
|
"path": "enterprise/lts"
|
|
},
|
|
{
|
|
"title": "Design your Vault Enterprise cluster",
|
|
"path": "enterprise/cluster-design"
|
|
},
|
|
{
|
|
"title": "Replication",
|
|
"routes": [
|
|
{
|
|
"title": "Replication support in Vault",
|
|
"path": "enterprise/replication"
|
|
},
|
|
{
|
|
"title": "Check for Merkle tree corruption",
|
|
"path": "enterprise/replication/check-merkle-tree-corruption"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "HSM Support",
|
|
"routes": [
|
|
{
|
|
"title": "HSM support overview",
|
|
"path": "enterprise/hsm"
|
|
},
|
|
{
|
|
"title": "How HSM changes Vault",
|
|
"path": "enterprise/hsm/behavior"
|
|
},
|
|
{
|
|
"title": "HSM security details",
|
|
"path": "enterprise/hsm/security"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "PKCS11 provider",
|
|
"routes": [
|
|
{
|
|
"title": "PKCS#11 support in Vault",
|
|
"path": "enterprise/pkcs11-provider"
|
|
},
|
|
{
|
|
"title": "Use PKCS#11 with AWS KMS",
|
|
"path": "enterprise/pkcs11-provider/aws-xks"
|
|
},
|
|
{
|
|
"title": "Use PKCS#11 with Oracle TDE",
|
|
"path": "enterprise/pkcs11-provider/oracle-tde"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "Automatic snapshots with integrated storage",
|
|
"path": "enterprise/automated-integrated-storage-snapshots"
|
|
},
|
|
{
|
|
"title": "Automatically upgrade Vault clusters",
|
|
"path": "enterprise/automated-upgrades"
|
|
},
|
|
{
|
|
"title": "Use redundancy zones",
|
|
"path": "enterprise/redundancy-zones"
|
|
},
|
|
{
|
|
"title": "Enforce lease count quotas",
|
|
"path": "enterprise/lease-count-quotas"
|
|
},
|
|
{
|
|
"title": "Augment entropy with external samples",
|
|
"path": "enterprise/entropy-augmentation"
|
|
},
|
|
{
|
|
"title": "FIPS",
|
|
"routes": [
|
|
{
|
|
"title": "FIPS compliance in Vault",
|
|
"path": "enterprise/fips"
|
|
},
|
|
{
|
|
"title": "Built-in FIPS 140-2 support",
|
|
"path": "enterprise/fips/fips1402"
|
|
},
|
|
{
|
|
"title": "Seal wrap for FIPS compliance",
|
|
"path": "enterprise/fips/sealwrap"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "Wrap seals with encryption",
|
|
"path": "enterprise/sealwrap"
|
|
},
|
|
{
|
|
"title": "Namespaces and SMT",
|
|
"routes": [
|
|
{
|
|
"title": "Namespace + SMT support in Vault",
|
|
"path": "enterprise/namespaces"
|
|
},
|
|
{
|
|
"title": "Create an administrative namespace",
|
|
"path": "enterprise/namespaces/create-admin-namespace"
|
|
},
|
|
{
|
|
"title": "Run Vault with many namespaces",
|
|
"path": "enterprise/namespaces/namespace-limits",
|
|
"badge": {
|
|
"text": "ENT",
|
|
"type": "outlined",
|
|
"color": "neutral"
|
|
}
|
|
},
|
|
{
|
|
"title": "Configure cross namespace access",
|
|
"path": "enterprise/namespaces/configure-cross-namespace-access",
|
|
"badge": {
|
|
"text": "ENT",
|
|
"type": "outlined",
|
|
"color": "neutral"
|
|
}
|
|
},
|
|
{
|
|
"title": "Best practices for namespaces",
|
|
"path": "enterprise/namespaces/namespace-structure"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "Use performance standby nodes",
|
|
"path": "enterprise/performance-standby"
|
|
},
|
|
{
|
|
"title": "Data consistency for replication",
|
|
"path": "enterprise/consistency"
|
|
},
|
|
{
|
|
"title": "Audit",
|
|
"routes": [
|
|
{
|
|
"title": "Audit Exclusion",
|
|
"path": "enterprise/audit/exclusion"
|
|
},
|
|
{
|
|
"title": "Audit Filtering",
|
|
"path": "enterprise/audit/filtering"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "Use control group authZ ",
|
|
"path": "enterprise/control-groups"
|
|
},
|
|
{
|
|
"title": "3rd party key management",
|
|
"path": "enterprise/managed-keys"
|
|
},
|
|
{
|
|
"title": "Multi-factor authN",
|
|
"routes": [
|
|
{
|
|
"title": "MFA support in Vault",
|
|
"path": "enterprise/mfa"
|
|
},
|
|
{
|
|
"title": "Configure Duo for MFA",
|
|
"path": "enterprise/mfa/mfa-duo"
|
|
},
|
|
{
|
|
"title": "Configure Okta for MFA",
|
|
"path": "enterprise/mfa/mfa-okta"
|
|
},
|
|
{
|
|
"title": "Configure PingID for MFA",
|
|
"path": "enterprise/mfa/mfa-pingid"
|
|
},
|
|
{
|
|
"title": "Configure TOTP for MFA",
|
|
"path": "enterprise/mfa/mfa-totp"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "Manage policies as code",
|
|
"routes": [
|
|
{
|
|
"title": "Mange Vault policies with Sentinel",
|
|
"path": "enterprise/sentinel"
|
|
},
|
|
{
|
|
"title": "Sentinel properties for Vault",
|
|
"path": "enterprise/sentinel/properties"
|
|
},
|
|
{
|
|
"title": "Sentinel examples",
|
|
"path": "enterprise/sentinel/examples"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"title": "HCP Vault docs",
|
|
"href": "https://cloud.hashicorp.com/docs/vault"
|
|
}
|
|
]
|
|
}
|
|
]
|