# Using HashiCorp Vault secrets engine in connections

This guide demonstrates how to use secrets from your HashiCorp Vault secrets engine to configure Workato connections.


# Prerequisites

To complete the steps in this guide, you must have the following:


# Step 1: Retrieve the secret's details from HashiCorp Vault

1

Sign in to your HashiCorp Vault instance and open the Secrets interface.

2

Select the Secrets Engine you plan to use. Take note of the name of the Secrets Engine you select. You will need this to complete the next step.

In this example, the name of our Secrets Engine is workato_docs.

Select a Secrets EngineSelect a Secrets Engine

3

Select the Secret you plan to use. Secrets are key-value pairs.

In our example, the secret name is Zendesk.

Select a SecretSelect a Secret

4

Keep this page open. You will need to reference it in the next step.


# Step 2: Configure a Workato Connection

1

Create a new connection or open the configuration page for an existing connection in your Workato account.

2

Click the corresponding input field for connection parameters referencing an external secret. The Add external secret option appears.

3

Select Add external secret to open the Add external secret popup.

4

Enter the Secret engine name, Secret name, and Key name in the Add external secret popup.

Add HashiCorp external secretAdd external secret

5

Select Done. The secret appears as a masked datapill in the input field on the connection page.

Select the datapill to edit the secret.

6

Click Connect and verify that this connection works.

If you prefer to add the secret with a secret mask, use the following syntax for Workato connection credentials:

{{workato:sm:<key_name>:<secret_engine_name>:<secret_name>}}
  • <key_name>

  • The name of the key. Your secret stored in HashiCorp Vault can contain multiple key-value pairs.

  • <secret_engine_name>

  • The name of the secret engine you plan to use.

  • <secret_name>

  • The name of the secret you plan to use. Your secrets engine can contain multiple secrets.

For example:

{{workato:sm:password:workato_docs:zendesk}}

Where workato_docs is the secrets engine and zendesk is the secret's name.

In the connection's configuration page, paste this entire value into the appropriate field.


# Step 3: Complete your Connection Setup

Click Connect and verify that this connection is working.


Last updated: 7/10/2024, 6:18:20 PM