Dynamic secrets are secrets that are generated every time they are accessed, using permissions you've defined in advance. In this way, users can access a resource for a temporary period of time with a defined set of permissions. You can configure multiple dynamic secrets for the same resource in order to granularly control the breadth of access.
To create a dynamic secret, you need to configure the required account and access credentials. The Akeyless Vault platform uses these to communicate with the resource and get short-lived passwords as required. You can configure:
- Database Dynamic Secrets
- AWS Dynamic Secrets
- EKS Dynamic Secrets
- GKE Dynamic Secrets
- Artifactory Dynamic Secrets
- RabbitMQ Dynamic Secrets
- Azure AD Dynamic Secrets
The configuration required to produce dynamic secrets is part of your private network, and are stored on the Akeyless API Gateway.
As with static secrets, you then need to add the dynamic secret to an Access Role with the appropriate permissions.
Get the value of a dynamic secret when you need it.
Updated 11 days ago