Edge Vaults

Important  This feature is available only in the latest user interface (beta).

The Edge Vault feature allows you to integrate your Edge site with your existing vault provider and implement your organization’s credential management policies for any data source to which Edge connects. Unlike Edge secrets, with Edge Vaults:

• You can pull your sensitive information from your vault application or service, rather than manually entering your information into Edge where it is encrypted and stored as Kubernetes secrets.
• Edge does not keep any sensitive information in the Edge site, it relies on the vault integration to establish a secure connection to your data sources.
• It is easier to rotate your secrets, because you do not have to manually rotate them in Collibra. Managing your data source credentials only needs to be performed in your organization's vault.

The following vault integrations are supported:

• CyberArk Vault
  • Supported version:
    • CyberArk Credential Provider: 8.0.0
• HashiCorp Vault
  •  Supported version:
    • HashiCorp Vault 1.15.x
  • Support secret engines:
    • Key Value V2 Secret Engine
    • Database Secret Engine
• Azure Key Vault
• AWS Secrets Manager
• Google Secret Manager