Cloud Infrastructure Integration

HashiCorp Vault

Integrate TigerIdentity with HashiCorp Vault for dynamic secret generation, unified policy management, and comprehensive secret access auditing.

Book a DemoView Documentation

Key Features

Dynamic Secrets

Generate short-lived credentials for databases, cloud providers, and other systems on-demand.

Policy Sync

Sync Vault policies and ACLs into TigerIdentity for unified policy management.

Token Lifecycle

Track Vault token creation, renewal, and revocation across all authentication backends.

Secret Access Audit

Monitor who accesses which secrets and when, with complete audit trails.

Auto-Renewal

Automatically renew Vault tokens and dynamic credentials based on active sessions.

Just-In-Time Secrets

Request secrets only when needed, with automatic revocation after use.

How It Works

1

Authenticate

Configure TigerIdentity with a Vault token or AppRole for API access.

2

Sync Configuration

TigerIdentity syncs Vault policies, auth methods, secret engines, and entities.

3

Stream Audit Logs

Enable Vault audit logging to send secret access events to TigerIdentity.

4

Generate Secrets

Request dynamic secrets through TigerIdentity with policy-based approvals.

Configuration Example

connector:
  type: hashicorp-vault
  name: "vault-production"

  config:
    address: "https://vault.company.com:8200"
    token: "${VAULT_TOKEN}"
    namespace: "production"

  sync:
    policies: true
    auth_methods: true
    secret_engines: true
    entities: true

  events:
    audit_logs: true
    stream_to_tiger: true

  provisioning:
    enabled: true
    dynamic_secrets:
      - database
      - aws
      - gcp
    ttl: 3600
    max_ttl: 28800

Use Cases

Database Credentials

Generate short-lived database credentials on-demand, eliminating shared passwords.

Cloud Provider Secrets

Create temporary AWS/GCP/Azure credentials for specific tasks with automatic cleanup.

Secret Access Control

Enforce fine-grained policies on who can access which secrets under what conditions.

Break-Glass Scenarios

Provide emergency access to secrets with enhanced approval workflows and monitoring.

Ready to connect HashiCorp Vault?

See how TigerIdentity enhances Vault with dynamic policies in a personalized demo.

Schedule Your Demo