All platform modules

Vault

Store credentials and sensitive records with zero-knowledge protection, personal and team spaces, and controls that fit how platform and security teams operate day to day.

Built for safer secret handling, clearer accountability, and audit-ready visibility, without scattered password managers and exports.

  • Separate vault unlock for sensitive data
  • Personal and team vaults with controlled sharing
  • Compliance and audit views without spreadsheet sprawl
Vault add-entry screen with search and a grid of entry types including Login, Secure Note, Credit Card, Identity, Password, Document, API Credentials, and Bank Account.
Vault AWS Login record with username, password field, website URL, Link CMDB action, and zero-knowledge security note.

Compliance register

Spot vault entries that miss password or policy checks before they become audit findings. Administrators see what failed, what needs review, and when items were last scanned, so hygiene improves continuously, not just at quarter-end.

Governance view for vault hygiene

Compliance Register listing non-compliant vault items with user, item name, failed password checks, and last scanned time.
Capabilities

What this module delivers

Give security and platform teams one place to manage secrets with policy-aware oversight.

Zero-knowledge storage

Protect sensitive entries with a dedicated vault unlock and a zero-knowledge security model.

Personal and team vaults

Support individual secret storage and controlled sharing across teams.

Compliance visibility

Review vault hygiene, monitor sensitive entries, and improve oversight across stored secrets from one register.

Audit visibility

Track access and activity with audit views that support review, accountability, and control over sensitive records.

Vault Audit Log table with search and filters, listing actions, users, vault items, and timestamps.

Audit visibility that supports control

See who touched a record, what changed, and when, so accountability is clear and reviews do not depend on brittle exports.

  • Clear visibility into vault activity
  • Stronger accountability for sensitive access
  • Better support for governance and review
  • Optional links into CMDB and wider platform context
How it works

From locked-down secrets to governed operations

1

Create or unlock vaults

Stand up personal or team vaults with separate unlock controls that match how you segment risk.

2

Store and classify entries

Add logins, API credentials, and secure notes with consistent structure and optional links to the rest of CloudPilot.

3

Review compliance and activity

Use the compliance register and audit log to enforce hygiene and respond with context, not guesswork.

  • Built for platform and security teams
  • Zero-knowledge storage with enterprise controls
  • Compliance and audit views in one product

See Vault in your environment

Book a demo to see how CloudPilot helps teams manage secrets, control access, and connect Vault records to the wider platform, with confidence.

Book a Demo Contact Sales