Versions Compared

Old Version 2

changes.mady.by.user Jonas Gonzalez

Saved on

compared with

New Version Current

changes.mady.by.user Jonas Gonzalez

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

  1. Create a secret engine to store the information for your Hashicorp Vault account. Copy and paste the needed information from Hashicorp Vault.

  2. Set up a connection for an integration or event type, selecting the appropriate Hashicorp Vault options. Verify that the connection is successful.

  3. Open a playbook and add an integration or event type. As part of the configuration, select the connection you set in the previous step and specify a vault option for the Hashicorp credentials.

Add a Secret Engine

  1. Navigate to Settings > Credentials Store.

  2. Click New Secret Engine.

  3. Enter a Name and ** Description**.

  4. Copy the following information from Hashicorp Vault.

  5. Approle ID Example: 7294b4d1-3f0a-4578-b68f-ba6d26a1c1b8

  6. Approle Secret Example: e4396eda-569f-4297-8c90-5ea971568566

  7. Approle path Example: https\://your-vault-address:8200/v1/auth/approle/login

  8. Paste the values into the indicated fields on the New Secret Engine screen. For the Approle path, make sure to use an absolute path that starts with https\://

  9. Devo SOAR supports Hashicorp KV secret engine v1 and v2. You can either create a new KV secret engine or use an existing one.
    To configure to use a secret engine provide the relative path of that KV secret engine. Here in example, KV engine is created at path `secrets/kv-v2'

...

The new credentials are saved, enabled, and listed on the Settings > Credentials Store page. You can now use credentials that are stored in your Hashicorp account for integrations and event types.

How to Store Credentials in KV Secret Engine

If you want to use credentials that you store in Hashicorp Vault, they should be stored in key-value pairs. The key should be the same as the labels of fields in the Devo SOAR UI. For example, Cyberreason uses username and password for credentials.

...

  1. key = Email Address/Username, Value =

  2. key = Password, Value =

...

Set Up a Connection with Hashicorp Credentials

Access the connections setup in any of these ways:

...

To save the settings and connect, click Connect. When the connection is made, the integration or event type is available to be used in a playbook.

Example Use in Playbook

In the Easy Mode editor, search for the integration and select it. As part of the integration setup, select the connection that you set up. (If you haven’t yet created a new connection click Create a New Connection and follow the instructions in the previous section.)

...

Complete the setup and click Submit. If the connection is valid, the credentials are supplied automatically and the results of the integration are displayed in the results panel.

Manage Credentials

To manage your existing secret engines and create new ones, open the Settings > Credentials Store page.

...