Skip to content

Secure Parameter Store

As an operator, you will need to be able to configure secret storage for the DRP Endpoint.

By default, a DRP endpoint will locally encrypt secrets at rest and in-memory until needed for a specific operation.

There are additional stores that can be used to handle secure parameters. All methods allow for parameterized retrieval of secrets.

  • - Use Hashicorp Vault as secret store.
  • - Pulls secrets from command line scripts run on the DRP endpoint.
  • - Pulls secrets and certificates from Azure Cloud.
  • - Pulls secrets and certificates from AWS.

has more details on the general architecture.