HashiCorp Vault PKI—overview

The HashiCorp Vault PKI application is the representation of a Vault PKI secrets engine in Trust Protection Platform. Once you set up the HashiCorp Vault and application, the Vault automatically issues end entity certificates to users

The driver:

  • Creates and enforces the role policy that the CA requires to issue or sign end-entity certificates. Only policy folders created by the Web SDK Role method can be provisioned to the Vault.
  • Automates the lifecycle of subordinate CA certificates in a HashiCorp PKI secrets engine. 

Unlike most drivers, you set up and manage certificate issuance with Web SDK methods. There are minimal UI elements. Instead, you use Role and CA methods from the Web SDK.

After calling an API method, you can view the result in the Policy tree and Vault. Additional information is available on the application object Support and Log tabs for troubleshooting.

Related Topics Link IconRelated Topics