Secret Manager

The initial deployment stores the key used to encrypt secrets in Cado locally on the machine. Enabling a Secret Manager allows Cado to instead store the key in GCP Secret Manager.

Prerequisites

Ability to update IAM role

Steps

Add the necessary permissions by adding the following to your IAM Role:

   "secretmanager.secrets.create"
   "secretmanager.versions.access"
   "secretmanager.versions.add"

Enable in the UI: Settings > Advanced > Secret Management > Turn on Secrets Manager

Secret Manager

Prerequisites​

Steps​

Prerequisites

Steps