July 11, 2022 By Shawna Guilianelli
Janet Van
2 min read

Build automated flows that help you safely rotate and delete secrets with IBM Cloud Secrets Manager.

In a previous article, we shared how IBM Cloud Secrets Manager can help you to create private SSL/TLS certificates and manage them centrally in a single location, along with the rest of your application secrets. Today, we’re excited to announce that you can now add locks that can help to prevent modification to secrets that can be disruptive to your applications.

New to Secrets Manager? Check out the documentation to learn more. 

What are secret locks?

By default, the secrets that you manage in Secrets Manager can be modified at any time by an authorized user or application. But, how can you prevent a secret from being accidentally deleted or misconfigured during a rotation? With secret locks, you can build automated workflows that can help you to do the following:

  • Indicate that a secret is in use by one or more applications or services.
  • Prevent secret data from being deleted, even after it expires.
  • Safely delete older versions of a secret after the newest version is deployed.
  • Avoid inadvertent downtime in your applications.

Secret locks help you to map a secret with your client or application. If a secret has a lock attached to it, it is currently being used by your application and cannot be modified or deleted until the lock is removed. 

Ready to get started?

Start by provisioning a Secrets Manager service instance in the IBM Cloud console. Because a dedicated instance is provisioned, it can take a few minutes. While you wait, you can continue to work elsewhere on IBM Cloud, or you might consider learning about best practices for rotating and locking secrets.

If you’re working from an existing instance, go to Secrets > name > Locks to create your first lock:

Questions? Contact us

We’d love to hear from you. To send feedback, you can open a GitHub issue from a link at the bottom of any page in the documentation, open a support ticket

More from Cloud

Announcing Dizzion Desktop as a Service for IBM Virtual Private Cloud (VPC)

2 min read - For more than four years, Dizzion and IBM Cloud® have strategically partnered to deliver incredible digital workspace experiences to our clients. We are excited to announce that Dizzion has expanded their Desktop as a Service (DaaS) offering to now support IBM Cloud Virtual Private Cloud (VPC). Powered by Frame, Dizzion’s cloud-native DaaS platform, clients can now deploy their Windows and Linux® virtual desktops and applications on IBM Cloud VPC and enjoy fast, dynamic, infrastructure provisioning and a true consumption-based model.…

Microcontrollers vs. microprocessors: What’s the difference?

6 min read - Microcontroller units (MCUs) and microprocessor units (MPUs) are two kinds of integrated circuits that, while similar in certain ways, are very different in many others. Replacing antiquated multi-component central processing units (CPUs) with separate logic units, these single-chip processors are both extremely valuable in the continued development of computing technology. However, microcontrollers and microprocessors differ significantly in component structure, chip architecture, performance capabilities and application. The key difference between these two units is that microcontrollers combine all the necessary elements…

Seven top central processing unit (CPU) use cases

7 min read - The central processing unit (CPU) is the computer’s brain, assigning and processing tasks and managing essential operational functions. Computers have been so seamlessly integrated with modern life that sometimes we’re not even aware of how many CPUs are in use around the world. It’s a staggering amount—so many CPUs that a conclusive figure can only be approximated. How many CPUs are now in use? It’s been estimated that there may be as many as 200 billion CPU cores (or more)…

IBM Newsletters

Get our newsletters and topic updates that deliver the latest thought leadership and insights on emerging trends.
Subscribe now More newsletters