Safeguarding Secrets: How to Protect API Tokens and Credentials with HashiCorp Vault

API tokens, passwords, and sensitive credentials are at the heart of every application’s security. In this premiere episode of Security Unlocked, host Kyle Winters is joined by Lead Technical Advocate Kareem Iskander to discuss why protecting these digital secrets is critical—and how tools like HashiCorp Vault can help. Watch as Kareem demonstrates practical steps for isolating, managing, and securing secrets using Vault, and learn how to implement access control policies to reduce risk. Whether you’re building your first app or managing enterprise infrastructure, this episode will give you actionable strategies to keep your secrets safe.

📌 Chapters
00:00 Introduction: The Importance of Protecting Secrets
00:31 What Are Digital Secrets?
01:13 Secret Sprawl: The Developer Challenge
03:09 Convenience vs. Security: Shifting the Mindset
03:35 Tools for Secret Management: Introduction to Vault
05:06 Access Control Lists (ACLs) and Application Roles
06:41 Getting Started: Initializing Vault for Development
09:00 Enabling Secret Engines and Organizing Data
10:20 Assigning Roles and Policies to Applications
13:17 Programmatic Access: Using Vault’s SDK and APIs
16:28 Best Practices: Keeping Secrets Out of Code
17:08 Cisco U. Resources

✨ Subscribe for more tech videos! @CiscoUtube ✨

Create a Cisco U. Free Account: http://cs.co/9001OQtCx

Видео Safeguarding Secrets: How to Protect API Tokens and Credentials with HashiCorp Vault канала Learn with Cisco