vault

vault

TLDR

Connect to a Vault server and initialize a new encrypted data store

$ vault init
copy


Unseal (unlock) the vault, by providing one of the key shares needed to access the encrypted data store
$ vault unseal [key-share-x]
copy


Authenticate the CLI client against the Vault server, using an authentication token
$ vault auth [authentication_token]
copy


Store a new secret in the vault, using the generic back-end called "secret"
$ vault write secret/[hello] value=[world]
copy


Read a value from the vault, using the generic back-end called "secret"
$ vault read secret/[hello]
copy


Read a specific field from the value
$ vault read -field=[field_name] secret/[hello]
copy


Seal (lock) the Vault server, by removing the encryption key of the data store from memory
$ vault seal
copy

Copied to clipboard