Cockroach Labs, ForgeRock & Palo Alto Networks Highlight New Vault Integrations

The HashiCorp Vault partner ecosystem continues to show strong growth as we added 19 new HashiCorp Cloud Platform (HCP), Enterprise, and OSS integrations this past fiscal quarter.

»New HCP Vault Verified Integrations

HCP Vault is a fully managed platform operated by HashiCorp, allowing organizations to get Vault up and running quickly to secure applications and protect sensitive data. The HCP Vault Verified badge indicates a product has been verified to work with HCP Vault. We are pleased to announce five new integrations have now been verified to work with HCP Vault:

»Cockroach Labs

Cockroach Labs completed two HCP Vault integrations this quarter. The first validation is the HCP Vault & CockroachDB Certificate Management integration, which manages certificates used by CockroachDB Self-Hosted via the HCP Vault PKI secrets engine and Vault Agent.

The second Cockroach integration is the HCP Vault & CockroachDB Encryption-at-Rest integration, which uses the Transit secrets engine in HCP Vault to provide externally managed encryption keys for use as the store key for CockroachDB's enterprise encryption-at-rest.

»Dynatrace

The Dynatrace HCP Vault & Synthetic Monitoring integration uses HCP Vault to store usernames and passwords to use in synthetic monitors for testing API endpoints and websites.

»ForgeRock

ForgeRock also completed two HCP Vault integrations this past quarter. The first integration is HCP Vault & ForgeRock Authentication, which authenticates into HCP Vault using single sign-on with ForgeRock as an identity provider.

The second integration is HCP Vault & ForgeRock Secrets, which uses HCP Vault as a secret store to manage secrets in ForgeRock Access Management.

»New Vault Enterprise Integrations

Nine new Vault Enterprise integrations were added this past quarter:

»Cockroach Labs

Cockroach Labs have completed three enterprise integrations this quarter to add to their growing portfolio. Adding to the enterprise versions of the Vault & CockroachDB Certificate Management and Vault & CockroachDB Encryption-at-Rest integrations, which were validated with HCP Vault from above, Cockroach Labs have also completed the Vault & CockroachDB Dedicated CMEK integration, which enables support for Customer Managed Encryption Keys (CMEK) from CockroachDB Dedicated by managing keys in AWS and GCP KMS from Vault Enterprise's Key Management secrets engine.

»Crypto4A

QxEDGE Hybrid Security Platform (HSP) has been validated to work with Vault's new managed keys feature, which delegates the handling, storage, and interaction with private key material to a trusted external KMS. These managed keys can be used in Vault’s PKI secrets engine to offload PKI operations to the HSM.

»Dynatrace

The Vault enterprise integration with Dynatrace uses Vault to store usernames and passwords for use in synthetic monitors that test API endpoints and websites.

»ForgeRock

The Vault & ForgeRock Secrets Enterprise integration utilizes HashiCorp Vault as a secret store to manage secrets in ForgeRock Access Management.

»Futurex

Vectera Plus, KMES Series 3, and VirtuCrypt cloud HSMs have been validated to work with Vault's new managed keys feature, which delegates the handling, storage, and interaction with private key material to a trusted external KMS. These managed keys can be used in Vault’s PKI secrets engine to offload PKI operations to the HSM

»Securosys

Securosys HSM has been validated to work with Vault's new managed keys feature, which delegates the handling, storage, and interaction with private key material to a trusted external KMS. These managed keys can be used in Vault’s PKI secrets engine to offload PKI operations to the HSM

»Utimaco

Utimaco HSM has been validated to work with Vault's new managed keys feature, which delegates the handling, storage, and interaction with private key material to a trusted external KMS. These managed keys can be used in Vault’s PKI secrets engine to offload PKI operations to the HSM

»New Vault OSS Integrations

We also added five new open source Vault integrations to our ecosystem:

»BigID

The Vault & BigID integration retrieves credentials from Vault to authenticate BigID connections to any data source using usernames and passwords.

»Forgerock

The Vault & ForgeRock Authentication integration authenticates into Vault using single sign-on with ForgeRock as an identity provider.

»Kaleido

The Kaleido Vault & EthSign secrets engine enables support for creating secp256k1 keys to sign transactions for submission to any Ethereum-based blockchain with an API interface.

»Palo Alto Networks

Secure, store, and tightly control access to tokens, passwords, certificates, and encryption keys, and other sensitive data using HashiCorp Vault within Palo Alto Networks XSOAR pipelines.This integration supports the use of Vault namespaces.

»Learn More

The HashiCorp Vault Integration Program allows partners to integrate their products to work with HashiCorp Vault (both the open source and Enterprise versions) or HashiCorp Cloud Platform (HCP) Vault. Learn more at https://www.vaultproject.io/docs/partnerships.

As a fully managed service, HCP Vault is the easiest way to secure, store, and tightly control access to tokens, passwords, certificates, encryption keys, and other sensitive data. For more information about HCP Vault and pricing, please visit the HCP product page or sign up through the HCP portal.

Find more information on past Vault integrations here:

• Cribl, MongoDB, and Thales Highlight New HCP and Enterprise Vault Integrations
• MongoDB Field Level Encryption with HashiCorp Vault KMIP Secrets Engine
• Red Hat, Datadog, and More Partners Add Vault Ecosystem Integrations
• HashiCorp Vault Surpasses 100 Integrations with 75 Partners
• HashiCorp Vault Integrates with ServiceNow for Credential Management
• GitHub, F5, and Okta Among New HCP Vault Integrations
• HashiCorp Releases Identity-based Security as a Service on the HashiCorp Cloud Platform