Secret Templates Overview

Secret templates in Secret Server are pre-configured structures that define the fields, launchers, and remote password changers for different types of secrets. These templates simplify the management and automation of secret-related tasks. Here are some key aspects and examples of secret templates:

General Features

  • Fields: Secret templates determine the specific fields that will be available for a secret, such as username, password, private key, and more.
  • Launchers: Templates can include launchers that facilitate automated login or connection to remote systems.
  • Remote Password Changers (RPC): Templates are pre-configured with password changers that can automatically update passwords on remote systems when a secret expires or on a defined schedule.
  • Customization: Administrators can view, modify, and manage secret templates through the Secret Server administration panel.

Examples of Secret Templates

Oracle Account Secret Template:

  • Purpose: Used for managing Oracle account secrets.
  • Features: Includes fields specific to Oracle accounts and is configured with an Oracle-specific password changer.
  • Usage: Automatically changes Oracle account passwords when a secret expires.

Windows Account Secret Template:

  • Purpose: Used for managing Windows account secrets.
  • Features: Includes fields specific to Windows accounts and is configured with a Windows-specific password changer.
  • Usage: Automatically changes Windows account passwords when a secret expires.

SAP Account Secret Template:

  • Purpose: Used for managing SAP account secrets.
  • Features: Includes fields specific to SAP accounts and is configured with an SAP-specific password changer.
  • Usage: Automatically changes SAP account passwords when a secret expires.

Azure Active Directory Secret Template:

  • Purpose: Used for managing Azure AD account secrets.
  • Features: Includes fields specific to Azure AD accounts and is configured with an Azure AD-specific password changer.
  • Usage: Automatically changes Azure AD account passwords when a secret expires.

Unix Account (SSH) Secret Template:

  • Purpose: Used for managing Unix account secrets with SSH.
  • Features: Includes fields for private keys and passphrases, and is configured with a Unix-specific password changer.
  • Usage: Automatically changes Unix account passwords and updates public keys when a secret expires.

Managing Secret Templates

  • Activation and Deactivation: Secret templates can be activated or deactivated as needed.
  • Mapping: Templates can be mapped to specific RPCs to ensure the correct password changer is used.
  • Administration: Templates are managed through the Secret Server administration panel, where they can be created, edited, and assigned to secrets.