Preview
Yandex Lockbox

A service for creating and storing secrets in the Yandex Cloud infrastructure.
Create secrets in the management console or using the API.

The service is at the Preview stage and can be used free of charge.

Documentation
Centralized storage
Your secrets are safely stored in one place, easily integrated with your cloud services, and accessible via external systems over the gRPC or REST API.
Encrypting secrets
Encrypt your secrets using Yandex Key Management Service keys. Secrets are only stored in encrypted form.
Access control
You can choose pre-configured service roles to ensure granular access to your secrets. Set up access permissions to read or manage your secret or its metadata.

Questions and answers

What is a secret?

A secret may contain any of your confidential information, e.g. a login-password pair, server certificate keys, or cloud service account keys.

A secret may contain any of your confidential information, e.g. a login-password pair, server certificate keys, or cloud service account keys.

How does Yandex Lockbox protect secrets?

Each secret stored by the service can have multiple versions of stored data. The service stores this data securely in encrypted form. All secrets are replicated in three availability zones.

Each secret stored by the service can have multiple versions of stored data. The service stores this data securely in encrypted form. All secrets are replicated in three availability zones.

What does the service offer?

  • Secure storage and access to secrets.
  • Centralized cloud-based storage of secrets.
  • Greater ease for audits and information security compliance.
  • Easy lifecycle management for your secrets.
  • Secure storage and access to secrets.
  • Centralized cloud-based storage of secrets.
  • Greater ease for audits and information security compliance.
  • Easy lifecycle management for your secrets.

Get started with Yandex Lockbox