Skip to content

12Port for Enterprise Credential Vault

12Port Credential Vault is the secure, scalable enterprise credential vault solution at the core of the 12Port platform. Built to handle today’s complex environments, Vault enables enterprises to store, manage, and control access to sensitive credentials like passwords, SSH keys, API tokens, and cloud credentials, all while providing granular control, automation, and compliance.

This documentation portal provides everything you need to deploy, configure, and manage your Credential Vault system effectively. Whether you're securing sensitive credentials or automating workflows, you'll find clear guides and resources to help you get the most out of this module.

What Credential Vault Does

Credential Vault is more than just a repository for secrets. It’s a comprehensive secret management system that allows you to:

  • Store and organize secrets securely using containers and hierarchical structures.
  • Enforce granular access control with role-based access control (RBAC) and policy-driven workflows.
  • Automate secret management tasks through import tools, tagging, and bulk operations.
  • Support scalable environments with multi-tenancy and secure, controlled access.
  • Generate detailed audit trails and compliance reports for security and governance.

Key Features Overview

Secure and Scalable Secret Storage

Credential Vault uses a container-based hierarchy to organize secrets, allowing you to mirror your organizational structure. Secrets can be managed and linked across multiple contexts, with the flexibility to isolate them by team, system, or environment. Key features include:

  • Nested containers for hierarchical organization of secrets.
  • Multi-tenancy to isolate assets by tenant, team, or environment.
  • Customizable asset types to define how each credential behaves.

Granular Access Control with RBAC

Credential Vault doesn’t just store secrets; it controls access to them. Using role-based access control (RBAC), you can assign permissions at different levels (space, container, asset) to ensure secrets are accessed only by authorized users. Additional features:

  • Field-level security to encrypt sensitive fields and control visibility.
  • External identity provider integration for seamless role assignments (Active Directory, LDAP, Entra ID).
  • Approval workflows to manage sensitive credential requests.

Policy-Driven Access Workflows

For sensitive secrets that require approval, Credential Vault includes a powerful workflow engine. You can:

  • Create dynamic, customizable request forms that adapt to your needs.
  • Define multi-level approval cycles with weighted approvers and time-based access rules.
  • Track and report on all requests, approvals, and access histories.

Automatic Tagging and Metadata Management

Credential Vault simplifies asset classification and searchability with automatic tagging based on naming conventions, host metadata, and predefined rules. Features include:

  • Auto-tagging engine to classify assets during import or updates.
  • Tagging based on context like environment, owner, or sensitivity level.
  • Hierarchical taxonomy management for structured asset organization.

Scale Your Secret Management with Automation

Credential Vault helps you scale secret management with automation tools for importing and managing assets:

  • Bulk import from CSV, Microsoft Active Directory, or cloud platforms (AWS, Azure, VMware).
  • Automated policy enforcement during import and mass operations like tagging, editing, or linking secrets.
  • Seamless integration with your existing systems through APIs.

Enterprise-Grade Search and Navigation

Credential Vault offers powerful search capabilities to help you quickly locate secrets:

  • Full-text and metadata-based queries to find assets based on specific attributes.
  • Filtering and taxonomy tagging for precise search results.
  • Quick views and asset previews for faster access and less downtime.

Developer-Friendly APIs and Customizable UI

Credential Vault supports both automation and hands-on management. You can:

  • Integrate with existing systems using Credential Vault’s REST API, fully documented via OpenAPI.
  • Customize the web interface with themes, layouts, and branding options to match your organizational needs.
  • Browser extensions for Chrome, Edge, and Firefox to autofill credentials in web forms securely.

Comprehensive Audit and Reporting

Credential Vault ensures complete visibility with a full audit trail for every action taken:

  • Audit logs for all activities, including login attempts and secret access.
  • Real-time filters for generating customizable, exportable reports (CSV, PDF).
  • Sorting and filtering options for granular audit views.

Getting Started

The Credential Vault documentation portal is designed to help you get up and running quickly. The sections include:

  • Getting Started
    Walkthroughs for deploying and setting up Credential Vault in your environment.

  • Secret & Access Management
    Detailed guides on managing secrets, defining asset types, and configuring RBAC policies.

  • Automation & Integration
    Learn how to automate secret imports, mass management, and integrate Credential Vault into your workflows.

  • Audit & Compliance
    Set up audit trails, reporting, and compliance checks.

  • Advanced Configuration
    How to leverage advanced features like multi-tenancy, workflow approval, and API integrations.

Need Assistance?

If you’re new to Credential Vault, we recommend starting with the Getting Started section. For more advanced use cases, explore the Automation or Audit & Compliance sections.

This portal includes step-by-step guides, reference materials, and troubleshooting tips to ensure smooth operation. Whether you're securing service credentials, API keys, or sensitive configuration data, Credential Vault helps you keep everything organized, automated, and compliant.

Need more help? Contact support@12port.com at anytime.