18 lines
1 KiB
Markdown
18 lines
1 KiB
Markdown
[OpenBao](https://openbao.org/) is a fork of [HashiCorp Vault](https://developer.hashicorp.com/vault) which is a centralized solution for managing and securing sensitive data like authentication credentials, usernames, API tokens, and database credentials.
|
|
Beyond static secrets, OpenBao supports dynamic secrets, allowing applications to generate ephemeral credentials for enhanced security.
|
|
|
|
OpenBao's _Encrypt as a Service_ feature makes it simple to implement data encryption across your systems.
|
|
|
|
OpenBao's Secret Engines include:
|
|
1. **Key-Value Store**
|
|
2. **PKI** (Public Key Infrastructure) for certificate management
|
|
3. **SSH** for managing SSH credentials
|
|
4. **Transit Engine** for encrypting data without storing it
|
|
5. **Time-based One-Time Passwords** (TOTP) for two-factor authentication
|
|
6. **Kubernetes Secrets** for seamless integration with containerized applications
|
|
|
|
## 🔗 References
|
|
|
|
* https://openbao.org/docs/platform/k8s/helm/run/#initialize-and-unseal-openbao
|
|
* https://developer.hashicorp.com/vault
|
|
|