Windows Credential Manager as Secret Store Option #150
Assignees
Labels
secret-provider
All issues related to secret providers
secret-store
All issues related to our secret store
Comments
GarthJL1965
added
secret-provider
|
Great to hear, are you open for contributing this? |
|
@tomkerkhove yes, I can contribute - I've found https://security.arcus-azure.net/features/secret-store/create-new-secret-provider. I'll get my head around the repo, code style, error handling etc in the next day or so |
|
Sounds good, thanks! |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
What secret store are you interested in?
I'm very interested in using the Windows Credential Manager as a Secret Store Provider/Option - I successfully campaigned for this and used it at my last place of work - for C# Win32 Services in particular. I think we need to stipulate, we're talking about Windows XP+ here. A Seperate version could be made available for *nix, Mac 'KeyStores'
What scenarios would it enable you?
A person who has access to the 'secret' can set it up on the deployment server using the a) standard Windows Credential Manager or b) a Utility with a pop-up GUI - in this situation the roles of developer/installer are divided
The Service/Application can have the code to create the required Secret in the Windows Credentials 'Store' built in (much as per (b) from point 1, called at (example) Service installation time - as per (1), the secret need not be made available to the Developer, if roles/responsibilities etc are different (the lines in DevOps, DevSecOps blur some of this now)
More information
Because my previous code was 'commercial', I would need to re-do it for this - I'm happy to write & test the code, using C# & Win32 Interop
The text was updated successfully, but these errors were encountered: