Protected secret for sensitive data

To avoid including confidential data in your application code, you can use secrets to protect sensitive data, such as passwords, tokens, or keys.

In the app configuration, you can configure the secret to use cipher text and a decryption key. This configuration ensures that the secret value is not displayed as plain text in the shell environment variable.

Protected secrets are supported in SOAR Platform 47.0 or later. If your App Host is running an earlier version, you cannot use protected secrets. You must upgrade to App Host 1.11.1 or later, or re-configure the secret so that it is not encrypted.

Configuring apps to use protected secrets

  1. On the SOAR Platform home page, click Administrator Settings on the system menu.
  2. On the Apps tab, find the app that you want to configure, and click Details to configure the app.
  3. On the Configuration tab for the app, in the App Secrets section, configure the secret that you want to use.
    1. To configure a new secret, click Add Secret.
    2. To edit an existing secret, click the row to open the configuration.
  4. On the Create New Secret page, type the Secret Name and Secret Value.
  5. To protect the secret, click the checkbox to encrypt it.

  6. Click Create.

    If you are updating an existing secret, click Update.