SAN FRANCISCO, April 10, 2018 (GLOBE NEWSWIRE) -- HashiCorp, a leader in cloud infrastructure automation, today released HashiCorp Vault 0.10, which allows users to leverage any trusted source of identity to enforce access to systems, secrets, and applications.
In Vault 0.10, the introduction of the Azure Active Directory authentication method allows users to authenticate identity using Azure credentials, and the new Google Cloud Platform (GCP) IAM secrets engine allows users to generate dynamic GCP IAM credentials on-demand. This release helps to further address the very common challenge of managing multiple identity models for organizations who run applications on multiple cloud platforms. Vault 0.10 also provides new ways to rotate credentials, handles versioned key values, and delivers a user interface for the open source version.
The Vault 0.10 release adds the Azure Active Directory Auth Method to its existing list of supported identity methods — LDAP, Google Cloud IAM, Amazon Web Services IAM, Kubernetes, GitHub, Okta, and more. The new GCP Secrets Engine adds to the list of systems that Vault brokers access to, including AWS, HashiCorp Consul, RabbitMQ, SSH, and databases such as PostgreSQL, MongoDB, Oracle, SAP HANA, SQL Server, and more.
“The traditional data center had ‘four walls and a pipe’ and a clear network perimeter. Anyone inside the network is assumed to be authorized to access the infrastructure,” said Armon Dadgar, founder and co-CTO of HashiCorp. “However, a cloud doesn’t have a distinct perimeter, and with multi-cloud, that surface area expands exponentially. Instead, security teams must utilize a different trust model to enforce systems and application access, and identity is the logical choice. With HashiCorp Vault 0.10, organizations now have the ability to leverage any trusted source of identity to enforce system or application access, providing the approach to security that’s needed in a multi-cloud world.”
Vault 0.10 also introduces several new features and functionality to improve operations around identity and secrets management:
- Graphical User Interface in Vault Open Source - The UI that was originally included with Vault Enterprise is now available in Vault Open Source. This allows users and teams to work together through a consistent set of interfaces for managing identities, secrets, and policies in both Vault Open Source and Vault Enterprise.
- Vault UI Enhancements - Enhances the Vault UI to help manage request auditing as well as create and manage identities across different platforms with Identity Groups and Entities. With this, customers can quickly and easily create and manage users, groups, and system configuration, as well as creating and managing HashiCorp Sentinel policies.
- Combined DB Root Credential Rotation - Enables the Combined DB secrets engine to automate the rotation of root credentials on a specified interval. As a result, customers can manage root access credentials for managing dynamic logins and system logins for systems such as MySQL.
- Key/Value Secrets Engine with Version Secrets - Allows multiple versions of a secret to be retained for compliance or disaster recovery purposes. Versioned KV allows for temporary changes to secrets that revert following a certain event or period of time, derivation of temporary keys due to a major security event, and other types of activities frequently employed by Vault users. Combined with Sentinel policy management, this also enables a host of compliance-focused functionality.
Additional Resources
- HashiCorp Vault 0.10 blog
- Identity-based Security and Low-trust Networks
- HashiCorp Vault webpage
- Scaling Secrets in Azure: HashiCorp Vault speaks Azure Active Directory
- How to dynamically generate GCP IAM credentials with a new HashiCorp Vault secrets engine
- Webinar Registration: Dynamic Secrets with Google Cloud and Vault
- White Paper: Addressing the Challenges of Multi-Cloud
Availability
HashiCorp Vault 0.10 is generally available today. Users can download the open source version of Vault at https://www.vaultproject.io. Vault Enterprise is available in two versions: Vault Enterprise Pro focuses on collaboration and operational features such as disaster recovery, cloud auto-unsealing, health monitoring, and initialization and secure bootstrapping workflows, while Vault Enterprise Premium focuses on multi-datacenter functionality and governance, with features such as HSM integration, replication, and support for Sentinel policy framework integration. For more information about HashiCorp Vault Enterprise, visit https://www.hashicorp.com/products/vault/. For a free, 30-day trial of Vault Enterprise, visit https://www.hashicorp.com/products/vault/trial?utm_source=vault010press
About HashiCorp
HashiCorp is a cloud infrastructure automation company that enables organizations to adopt consistent workflows to provision, secure, connect, and run any infrastructure for any application. HashiCorp open source tools Vagrant, Packer, Terraform, Vault, Consul, and Nomad are downloaded thousands of times per day and are broadly adopted by the Global 2000. Enterprise versions of these products enhance the open source tools with features that promote collaboration, governance, and multi-data center functionality. The company is headquartered in San Francisco and backed by Mayfield, GGV Capital, Redpoint, and True Ventures. For more information, visit https://www.hashicorp.com or follow HashiCorp on Twitter @HashiCorp.
Media and Analyst Contact:
Amber Rowland
amber@therowlandagency.com
+1-650-814-4560