Ataccama ONE Agentic Cloud Portal ONE Desktop ONE DQ&C ONE MDM ONE RDM ONE Runtime Server
latest (17.0.0) 16.3.0 16.2.0 16.1.0 16.0.0 15.4.0 15.3.0 15.2.0 15.1.0 14.5.x 13.9.x 13.8.x 13.7.x 13.6.x 13.5.0 13.4.x 13.3.x 13.2.x
User Community Service Desk Downloads

Secret Management Services

Create integrations between ONE and secret management services to provide access to your central storage locations and retrieve secrets from them when connecting to a data source, allowing for more secure storage and management of application secrets and keys.

Secret management service integrations can be created by users with editing or full access rights to the vault entity. For more information, see Governance Roles.

Supported providers

ONE supports the following secret management providers:

  • Azure Key Vault: Integrate with Microsoft Azure Key Vault to retrieve secrets using Azure AD Client Credentials or Managed Identity.

  • HashiCorp Vault: Integrate with HashiCorp Vault to retrieve secrets using Google Service Account, Google Compute Engine, or JWT credentials.

  • AWS Secrets Manager: Integrate with AWS Secrets Manager to retrieve secrets stored as key/value pairs using AWS access key credentials, with optional assume role support.

  • CyberArk Secrets Manager: Integrate with CyberArk Central Credential Provider (CCP) to retrieve secrets using PFX or Cert client certificate authentication.

Use credentials from a secret management service in connections

When you create new connections for data sources, you can retrieve credentials from the integrated secret management services instead of adding them manually.

For more information about creating connections to data sources, see Connect to a Source.

Instead of providing the values themselves (for example, the password or client secret), you need to provide the name under which that value is saved (that is, the key part of a key-value pair). For example:

  • Name: oracle-prod-pw

  • Value: 0aaa12…​3ab

For provider-specific examples and instructions, see the individual integration pages listed in Supported providers.

Next steps

Once you have configured a secret management service, you can retrieve credentials from it when connecting to data sources. Head to Connect to a Source and select the instructions relevant for your connection, for example:

Was this page useful?