Hello, is there a mechanism that can be set in vault to send an email notification to our app’s support DL once a stored secret has to be rotated or is nearing some configured expiry date?
Thanks.
I don’t believe there is any such functionality built in.
Is there a particular secret type you’re needing this functionality for? Depending on the type there may be some options to build an external process to do this.
You can monitor the audit log, but I think you need to be in DEBUG mode which is pretty hefty price.
@jeffsanicola @aram Many thanks for both your responses… Much appreciated.
Hello, I know this is a year-old thread, but I am also facing a similar use case, where an operations person needs to monitor the expiration time of secrets across multiple environments so that he knows when to rotate it. @nikki.schumann did you get around to resolving this issue and how did you do it? Is it potentially possible via Grafana?
I would suggest you start a new thread, and fully define what you are looking to do there.
Bear in mind that Vault can store/manage many kinds of secrets, and the answers may differ depending on which kinds you are interested in.