HashiCorp Vault provides a unified interface to secrets stored across multiple clouds and data centers, while restricting access to those secrets and recording a detailed audit log of which users have requested access to them. GaraSign integrates with Vault as one of its cryptographic tokens (or “key containers,” as they’re called within the GaraSign lexicon) via Vault’s Transit Engine.
Garantir’s GaraSign and HashiCorp Vault complement each other remarkably well. GaraSign offers a multitude of native client integrations, including Apple, Microsoft, Java, GPG, OpenSSL, and much more, which enables all end-user signing clients throughout an enterprise environment to securely use private key material stored in HashiCorp Vault, without exporting that private key material.
At the same time, HashiCorp Vault centralizes and safeguards secrets and private keys from multiple clouds and data centers. This allows customers to manage all secrets and sensitive data in one centralized location, providing an extremely robust level of security and making it easy for end users to gain access to private keys they need (and only the keys they need).