Secret Manager quickstart

Prev Next

Available in VPC

Secret Manager in NAVER Cloud Platform makes it easy to create, use, and manage secrets. You can check how to use Secret Manager in detail in Getting started with Secret Manager and Using Secret Manager, but we recommend taking a look at this page first. Reading through the use scenario before you learn how to use Secret Manager allows you to use it more efficiently. The overall sequence of using Secret Manager and description of each sequence are as follows.

1. Set usage permissions
2. Create secret
3. Manage secret
4. Rotate secret
5. Call API
6. Delete secret

The entire scenario of using Secret Manager is closely related to the lifecycle of a secret. For more information about a secret lifecycle and glossary, see Secret Manager concepts and Secret Manager glossary.

1. Set usage permissions

Grant "permissions" to the "sub account" issued from NAVER Cloud Platform’s Sub Account to set the usage permissions for using secrets. Thus, you need to first create sub accounts other than your main account through Sub Account.

Note

Sub Account is a free service provided upon subscription request for free. For a detailed description of Sub Account and its pricing plans, see Services > Management & Governance > Sub Account in NAVER Cloud Platform portal.

You can configure the admin and user by granting the admin permission (NCP_SECRETMANAGER_MANAGER) and the user permission (NCP_SECRETMANAGER_USER) to the sub account provided by Sub Account. See Managing Secret Manager permissions and Sub Account user guide.

2. Create secret

Create a secret to use one. You can refer to the following user guides for creating a secret.

3. Manage secret

Check the list of created secrets and operate and manage them. You can check the status of a secret depending on its lifecycle and change it. You can check the usage history of secrets with Cloud Log Analytics. You can refer to the following user guide:

4. Rotate secret

As rotating a security password requires direct access to the connected system using a security password, it is executed in the user area. You can rotate a security password by defining an action in Cloud Functions. You can refer to the following user guide:

5. Call API

You can use secret management and viewing functions with the Rest API provided by Secret Manager. You can refer to the following user guide:

6. Delete secret

Secrets that are no longer in use can be requested to be deleted for misuse prevention and security. Secrets for which a deletion request is made will be deleted automatically after 7 days of pending. If there's no need to wait for deletion, it can be deleted immediately.

Caution

Once you delete a secret, you cannot recover it. So please make a careful decision.

You can refer to the following user guide:

Business Registration Number: 129-86-31394 E-commerce Permit Number:No. 2009-GyeonggiSeongnam-0510
CEO: Kim Yuwon Address: NAVER Green Factory 17th–26th Floors, Buljeong-ro 6, Bundang-gu, Seongnam-si, Gyeonggi-do 13561, Republic of Korea. Customer Support Number: 1544-5876
© NAVER Cloud Corp. All Rights Reserved.