Vault is a feature that allows you to store credentials in your Safous ZTNA environment, making it easier for administrators to map certain access apps with the SSO function. Most application types in Safous ZTNA support SSO settings, except for Network Applications.
Vault has five types of credential management: Password, Private Key, Certificate, API Key, and Generic Secret. This article will explain only the Certificate-based vault management, which can be used for send client certificate settings in the HTTPS app.
Accessing Vault Certificate
- Login to https://portal.safous.com
- Navigate to Settings > ZTNA > Vault > Certificate
- List of Vault Certificate shown with below details
(1) "New Certificate" button, to add your Certificate and use it in Safous
(2) Name of the existing Vault Certificate
(3) Last Change of the existing Vault Certificate
(4) "+" button, to expand the information of that specific Vault Certificate
Creating New Vault Certificate
- Click "New Certificate" button, it will expand multiple forms to be filled out for new vault certificate
-
When filling out the form, please follow these rules:
- Name is a required field and must be unique compared to other vault password names.
- Certificate is a required field where you should enter the certificate data that will be used for create secure communication channels between clients and servers.
- Private Key is required and should be the private key associated with the previously entered certificate.
- Click "Save".
Modify or Delete Existing Vault Certificate
- Click plus sign (+) button on existing certificate, which will expand the information of that specific password list
- Click Edit to modify, or Delete to delete the Certificate.