Astra DB Serverless database plugin for HashiCorp Vault

The DataStax Astra DB Serverless database plugin for HashiCorp Vault is an open-source project that adds dynamic token lifecycle management features for Astra DB Serverless databases.

By default, Astra DB Serverless API tokens are not associated with specific users and currently the tokens do not have metadata descriptions.

For more details, see the full Astra DB Serverless database Plugin for HashiCorp Vault documentation in the plugin’s open-source GitHub repo.

The plugin tracks:

  • Token creators

  • Token purposes

  • Tokens actively in use

The plugin does not track:

  • Token downloads

  • Token usage

  • Token sharing

The Astra DB Serverless database plugin for HashiCorp Vault solves these security management issues. It allows you to add metadata to tokens, such as the creator’s identity and the purpose of the token.

Specifically, you can:

  • Define a default lease time

  • Create new tokens with lease settings

  • List tokens by Client ID

  • View token lease details

  • List all token leases

  • Renew a token lease

  • Revoke a token or lease before the lease expires

  • Delete a token

What is HashiCorp Vault?

HashiCorp Vault is a widely-used solution across the tech industry. It’s an identity-based secrets and encryption management system that provides key-value encryption services gated by authentication and authorization methods.

With HashiCorp Vault, access to tokens, secrets, and other sensitive data are securely stored, managed, and tightly controlled. Audit trails are provided. HashiCorp Vault is also extensible via a variety of interfaces, allowing plugins (including the Astra DB Serverless database plugin for HashiCorp Vault) to contribute to this ecosystem.

Resources

See the full Astra DB Serverless database plugin for HashiCorp Vault documentation in the plugin’s open-source GitHub repo.

Was this helpful?

Give Feedback

How can we improve the documentation?

© 2024 DataStax | Privacy policy | Terms of use

Apache, Apache Cassandra, Cassandra, Apache Tomcat, Tomcat, Apache Lucene, Apache Solr, Apache Hadoop, Hadoop, Apache Pulsar, Pulsar, Apache Spark, Spark, Apache TinkerPop, TinkerPop, Apache Kafka and Kafka are either registered trademarks or trademarks of the Apache Software Foundation or its subsidiaries in Canada, the United States and/or other countries. Kubernetes is the registered trademark of the Linux Foundation.

General Inquiries: +1 (650) 389-6000, info@datastax.com