Preview
Yandex Lockbox

A service for creating and storing secrets in the Yandex.Cloud infrastructure.
Create secrets in the management console or using the API.

The service is at the Preview stage and can be used free of charge.

Documentation
Centralized storage
Your secrets are safely stored in one place. You can easily set up integration for your cloud services and access Yandex Lockbox from external systems over the gRPC or REST API.
Encrypting secrets
Encrypt your secrets using Yandex Key Management Service keys. Secrets are stored only in encrypted form.
Access control
You can choose pre-configured service roles to ensure granular access to your secrets. Set up access permissions to read or manage your secret or its metadata.

Questions and answers

What is a secret?

A secret may contain any of your confidential information. For example, a login-password pair, server certificate keys, or cloud service account keys.

A secret may contain any of your confidential information. For example, a login-password pair, server certificate keys, or cloud service account keys.

How does Yandex Lockbox protect secrets?

Each secret stored by the service can have multiple versions of stored data. The service stores this data securely in encrypted form. All secrets are replicated in three availability zones.

Each secret stored by the service can have multiple versions of stored data. The service stores this data securely in encrypted form. All secrets are replicated in three availability zones.

What tasks does the service solve?

  • Secure storage and access to secrets.
  • Centralized cloud-based storage of secrets.
  • Audits and information security compliance made easier.
  • Easy lifecycle management for your secrets.
  • Secure storage and access to secrets.
  • Centralized cloud-based storage of secrets.
  • Audits and information security compliance made easier.
  • Easy lifecycle management for your secrets.

Get started with Yandex Lockbox