Secret Manager
E697166
Secret Manager is a Google Cloud service for securely storing, managing, and accessing sensitive configuration data such as API keys, passwords, and certificates.
Statements (46)
| Predicate | Object |
|---|---|
| instanceOf |
Google Cloud service
ⓘ
secret management service ⓘ |
| accessMethod |
Google Cloud Console
NERFINISHED
ⓘ
REST API ⓘ client libraries ⓘ gcloud CLI NERFINISHED ⓘ |
| developer | Google ⓘ |
| feature |
IAM-based access control
ⓘ
audit logging ⓘ automatic replication ⓘ customer-managed replication policies ⓘ encryption at rest ⓘ encryption in transit ⓘ labels for secrets ⓘ resource-level permissions ⓘ secret rotation support ⓘ versioned secrets ⓘ |
| goal |
improve security of sensitive configuration data
ⓘ
reduce secret sprawl ⓘ simplify secret access management for applications ⓘ |
| integratesWith |
Cloud Audit Logs
NERFINISHED
ⓘ
Cloud Functions NERFINISHED ⓘ Cloud Run NERFINISHED ⓘ Compute Engine NERFINISHED ⓘ Google Cloud IAM NERFINISHED ⓘ Google Kubernetes Engine NERFINISHED ⓘ |
| offeredAs | fully managed service ⓘ |
| partOf | Google Cloud Platform NERFINISHED ⓘ |
| provider | Google Cloud NERFINISHED ⓘ |
| provides | secure storage for secrets ⓘ |
| securityProperty |
secrets are encrypted using Google-managed keys by default
ⓘ
supports customer-managed encryption keys via Cloud KMS ⓘ |
| supports |
API keys
ⓘ
access from on-premises and hybrid environments ⓘ access policies based on service accounts ⓘ automatic secret version creation ⓘ certificates ⓘ disabling and destroying secret versions ⓘ fine-grained access control per secret ⓘ other sensitive configuration data ⓘ passwords ⓘ secret replication across regions ⓘ |
| useCase |
centralized secret management
ⓘ
controlling access to sensitive data ⓘ managing environment-specific configuration ⓘ storing application secrets ⓘ |
Referenced by (2)
Full triples — surface form annotated when it differs from this entity's canonical label.